לאתר זה תהיה פונקציונליות מוגבלת בזמן שאנו מתחזקים אותו לשיפור החוויה שלך. אם מאמר מסויים לא פותר את הבעיה שלך וברצונך לשאול שאלה, קהילת התמיכה שלנו מחכה לעזור לך ב־Twitter תחת ‎@FirefoxSupport וב־Reddit תחת ‎/r/firefox.

חיפוש בתמיכה

יש להימנע מהונאות תמיכה. לעולם לא נבקש ממך להתקשר או לשלוח הודעת טקסט למספר טלפון או לשתף מידע אישי. נא לדווח על כל פעילות חשודה באמצעות באפשרות ״דיווח על שימוש לרעה״.

מידע נוסף

S/MIME and trusting other certificates

  • 2 תגובות
  • 1 has this problem
  • 340 views
  • תגובה אחרונה מאת alan158

more options

I am trying to get S/MIME set up properly. I have my personal certificate set up and installed - I can send signed messages. However, when I try to send an ecrypted message to a recipent with a DOD certificate, I run into an error that the certificate is not valid. I have installed the DOD root certificates, trusted them for email/websites, and imported the individual's signature cert into the store.

How do I change the settings / trust on the individual's certificate to trust it? It is within the valid date range.

I am trying to get S/MIME set up properly. I have my personal certificate set up and installed - I can send signed messages. However, when I try to send an ecrypted message to a recipent with a DOD certificate, I run into an error that the certificate is not valid. I have installed the DOD root certificates, trusted them for email/websites, and imported the individual's signature cert into the store. How do I change the settings / trust on the individual's certificate to trust it? It is within the valid date range.

פתרון נבחר

I had already installed the DOD root certificates as you had mentioned.

I had to manually go through each DOD certificate and "Edit Trust" to allow them to identify websites and email. That solved the problem.

Read this answer in context 👍 0

כל התגובות (2)

more options

Generally the issue is missing intermediate certificates. But Personally I think it is funny the supposedly most secure organizations in the world can't meet a public test on their integrity that would see them included in the trusted authorities immediately.

However basically I suggest following the guide for Firefox here https://public.cyber.mil/pki-pke/end-users/getting-started/linux-firefox/

So Step 1 from the web site In Thunderbird open options/ preferences and search for cert then click the Manage Certificates button. The pages are generally the same in Thunderbird and Firefox as Thunderbird uses the same pki code to manage certificates as Firefox. Skip to step 7. from the web site

more options

פתרון נבחר

I had already installed the DOD root certificates as you had mentioned.

I had to manually go through each DOD certificate and "Edit Trust" to allow them to identify websites and email. That solved the problem.

השתנתה ב־ על־ידי alan158