Αυτός ο ιστότοπος θα έχει περιορισμένη λειτουργικότητα, όσο εκτελούμε εργασίες συντήρησης για να βελτιώσουμε την εμπειρία σας. Αν ένα άρθρο δεν επιλύει το ζήτημά σας και θέλετε να κάνετε μια ερώτηση, η κοινότητα υποστήριξής μας είναι έτοιμη να σας βοηθήσει στο Twitter (@FirefoxSupport) και στο Reddit (/r/firefox).

Avatar for Username

Αναζήτηση στην υποστήριξη

Προσοχή στις απάτες! Δεν θα σας ζητήσουμε ποτέ να καλέσετε ή να στείλετε μήνυμα σε κάποιον αριθμό τηλεφώνου ή να μοιραστείτε προσωπικά δεδομένα. Αναφέρετε τυχόν ύποπτη δραστηριότητα μέσω της επιλογής «Αναφορά κατάχρησης».

Μάθετε περισσότερα

Αυτό το νήμα αρχειοθετήθηκε. Παρακαλούμε κάντε νέα ερώτηση αν χρειάζεστε βοήθεια.

Enterprise root certs support for firefox in linux

  • 4 απαντήσεις
  • 1 έχει αυτό το πρόβλημα
  • 10 προβολές
  • Τελευταία απάντηση από mozilladev

mozilladev
mozilladev
more options

I am trying to access sites whose certificates are issued by a local CA in firefox 70 version in RHEL 7 machine. I have added this CA cert to linux system certificate store. But I am not able to access the site and I see MOZILLA_PKIX_ERROR_MITM_DETECTED error in the webpage.

In windows and Mac I was able to make it work by setting the option security.enterprise_roots.enabled to true in preferences file and adding the root cert in system key store. But seems this option is not available in linux.

If I import this certificate manually in firefox UI (Preferences -> Certificate Manager -> Authorities and Import), I was able to access the site. But I am looking for a programatic way or by setting some config changes from code.

I am looking for this option in both RHEL and Ubuntu flavours. (Not sure whether the kernel flavour will make any difference).

Could you please help me in identifying the correct config options or steps to make Firefox trust this certificate.

Thanks

I am trying to access sites whose certificates are issued by a local CA in firefox 70 version in RHEL 7 machine. I have added this CA cert to linux system certificate store. But I am not able to access the site and I see MOZILLA_PKIX_ERROR_MITM_DETECTED error in the webpage. In windows and Mac I was able to make it work by setting the option security.enterprise_roots.enabled to true in preferences file and adding the root cert in system key store. But seems this option is not available in linux. If I import this certificate manually in firefox UI (Preferences -> Certificate Manager -> Authorities and Import), I was able to access the site. But I am looking for a programatic way or by setting some config changes from code. I am looking for this option in both RHEL and Ubuntu flavours. (Not sure whether the kernel flavour will make any difference). Could you please help me in identifying the correct config options or steps to make Firefox trust this certificate. Thanks

Όλες οι απαντήσεις (4)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Did you try to add this certificate to Firefox using a policies.json file?

mozilladev
mozilladev Ιδιοκτήτης ερώτησης
more options

Yes, I tried. I created distribution folder in firefox folder, and created policies.json file inside distribution folder with the following content.

{ 

 "policies": {
   "Certificates": {
     "ImportEnterpriseRoots": true 
     "Install": ["cert1.crt"]
   }
 }

}

and I copied the cert1.crt to the location given for linux, like /usr/lib/mozilla/certificates etc., But still observing the same issue.

Thanks

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Did you try to specify the full path to the certificate ? 

{
  "policies": {
    "Certificates": {
      "Install": ["cert1.der", "/home/username/cert2.pem"]
    }
  }
}
mozilladev
mozilladev Ιδιοκτήτης ερώτησης
more options

Yes, I tried that one as well.