The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Windows Vista and WHM Self-Signed Certificate

Discussion in 'General Discussion' started by heyjohnboy, Apr 5, 2007.

  1. heyjohnboy

    heyjohnboy Well-Known Member

    Joined:
    Oct 7, 2003
    Messages:
    62
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Valencia, CA
    Hi. We just added a new machine in the office and it came with Vista, so we thought...why not give it a try?

    Well...when we go to any of our cpanel servers, Vista refuses to recognize the self-signed certificate that WHM generates, which is expected. BUT, we can't ADD the cert so that Vista recognizes it in the future. When you click on View Certificates the option to add a certificate seems to be gone. It used to be easy to add a cert using XP. Can anyone explain how to do it under Vista?

    Thanks.-
     
  2. heyjohnboy

    heyjohnboy Well-Known Member

    Joined:
    Oct 7, 2003
    Messages:
    62
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Valencia, CA
    Found the solution

    For anyone who runs into this same problem, here's the solution as quoted from geekularity.com (http://geekularity.com/2007/02/02/installing-self-signed-ssl-certificates-in-vista):

    To install a certificate when visiting a self-signed OWA server on Vista, you need to perform the following steps:

    1. Run IE as an administrator (Right-click the desktop icon)
    2. Visit the site.
    3. Click through the certificate error
    4. Click the “Certificate Error” button in the address bar.
    5. Click View Certificate
    6. Click Install Certificate
    7. Unlike on XP, you must click the “Place all certificates in the following store” radio button, and choose the “Trusted Root Certification Authorities” store. If you don’t do this, the certificate goes in your personal store, and it isn’t trusted by IE.

    Yes, this is cumbersome, but for good reason: Self-signed certificates are quite dangerous, because unless you manually compare the thumbprint/hash via secure or out-of-band communication, you have no assurance that your connection isn’t being man-in-the-middle attacked.

    Thanks to Eric Lawrence, Program Manager, IE Networking for these instructions.
     
    #2 heyjohnboy, Apr 6, 2007
    Last edited: Apr 6, 2007
Loading...

Share This Page