We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

FF doesn't read enterprise ca certificate from /etc/ssl/certs. How to change this?

more options

Enterprise own root and intermediate ca certificates are stored within /etc/ssl/certs. Hash links are done. However to make FF accept the server certificate, - avoid message "connection not secure", - the issuer certificate must be installed into FF certification store. This is boring, as it must be done foer every user individally! How to tell FF to get the CA-Certificates from linux standard directory /etc/ssl/certs?

Enterprise own root and intermediate ca certificates are stored within /etc/ssl/certs. Hash links are done. However to make FF accept the server certificate, - avoid message "connection not secure", - the issuer certificate must be installed into FF certification store. This is boring, as it must be done foer every user individally! How to tell FF to get the CA-Certificates from linux standard directory /etc/ssl/certs?

All Replies (1)

more options

The short answer is, you don't. But you can create a script, which adds the certificate into the user's Firefox profile, using nss-tools, specifically certutil.

Modified by Balázs Meskó