Valid personal certificate and IE 9.x
-
I would look to see if your .crt association has been changed? Are you on xp, vista, 7?
once you have verified that it downloaded correctly with your text viewer software.
-
When I create a valid personal certificate, what should I put in the "Common Name"?
I use windows 7 SP1 64-bit.
Thanks
Bye
-
Could you help me again?
Thanks
Bye
-
Unless you have changed it the common name would be 'pfsense'. It's whatever your machine is seen as. E.g. pfSense.yourdomain.com.
Steve
-
I created my personal certificate and I exported it to a Windows 7 SP1 computer to then import it into IE 9.x 64-bit but does not work:
Why? Which encodes has the crt file?
Thanks
Bye
-
It is TEXT file - I already showed you what it should look like - OPEN it with your favorite TEXT VIEWER!!
Does it look like the one I posted?
What personal cert did you create? I don't see one - your CA lists NO CERTS created.
You need to install the CA .crt file into IE as trusted CA. Then any certs this CA signs IE will now trust - you need a common name on the cert the CA signs to be the FQDN that you use to access pfsense web gui on. do you use https://pfsense.office to access your pfsense web gui? Then that would be the common name pfsense.office of the cert you create that your pfsense CA signs.
I have been on the road - and catching up with RL and work issues, when I get a chance I will create a How to in the wiki of each step to get IE to trust the cert used by the web gui of websense when you access it via https://whatever.something.tld
-
It is TEXT file - I already showed you what it should look like - OPEN it with your favorite TEXT VIEWER!!
Does it look like the one I posted?
What personal cert did you create? I don't see one - your CA lists NO CERTS created.
You need to install the CA .crt file into IE as trusted CA. Then any certs this CA signs IE will now trust - you need a common name on the cert the CA signs to be the FQDN that you use to access pfsense web gui on. do you use https://pfsense.office to access your pfsense web gui? Then that would be the common name pfsense.office of the cert you create that your pfsense CA signs.
I have been on the road - and catching up with RL and work issues, when I get a chance I will create a How to in the wiki of each step to get IE to trust the cert used by the web gui of websense when you access it via https://whatever.something.tld
Sorry again, but in the CAs list, there is a certificate with the pfSense_certificate name that I created. You see it?
Thanks
Bye
-
No there is isnt - that is your CA!!! Not a certificate that has been signed by your CA.. See the big ZERO - well maybe not because your pictures are the size of postage stamps ;) This is ZOOMED into what you posted.
Are you going to look at the file your downloading with your text viewer or NOT!!
You need to install the CA cert into IE, then create a certificate that this CA signed with a common name of your FQDN you use to access pfsense web gui. I don't know how to make it any easier
-
Please remain calm! ;D
Steve
-
Trying too ;)
-
So, how do I create a valid personal certificate?
Thanks
Bye
-
You go to the 'Certificates' tab in Cert Manager and click the '+' sign. Now change to 'Create an internal Certificate'.
This will create a certificate from your CA (that you just created), you can then assign the webGUI to use it.However this will not help with your problem installing the CA key in IE. You should be ab;e to do this whether or not you've created any certificates from it. :-\
I agree with Johnpoz: open the .crt file in a text editor check it's a real and complete file.
Steve
