Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

FF doesn't read enterprise ca certificate from /etc/ssl/certs. How to change this?

more options

Enterprise own root and intermediate ca certificates are stored within /etc/ssl/certs. Hash links are done. However to make FF accept the server certificate, - avoid message "connection not secure", - the issuer certificate must be installed into FF certification store. This is boring, as it must be done foer every user individally! How to tell FF to get the CA-Certificates from linux standard directory /etc/ssl/certs?

Enterprise own root and intermediate ca certificates are stored within /etc/ssl/certs. Hash links are done. However to make FF accept the server certificate, - avoid message "connection not secure", - the issuer certificate must be installed into FF certification store. This is boring, as it must be done foer every user individally! How to tell FF to get the CA-Certificates from linux standard directory /etc/ssl/certs?

All Replies (1)

more options

The short answer is, you don't. But you can create a script, which adds the certificate into the user's Firefox profile, using nss-tools, specifically certutil.

Balázs Meskó modificouno o