Этот сайт имеет ограниченную функциональность, пока мы проводим техническое обслуживание для улучшения его работы. Если какая-либо статья не решила вашу проблему и вы хотите задать вопрос, наше сообщество поддержки ждёт вас: @FirefoxSupport в Твиттере и /r/firefox на Reddit.

Поиск в Поддержке

Избегайте мошенников, выдающих себя за службу поддержки. Мы никогда не попросим вас позвонить, отправить текстовое сообщение или поделиться личной информацией. Сообщайте о подозрительной активности, используя функцию «Пожаловаться».

Подробнее

How do I import a self-signed CA certificate into Firefox "Authorities" tab?

  • 3 ответа
  • 59 имеют эту проблему
  • 7 просмотров
  • Последний ответ от trs1980

more options

How do I import a self-signed CA certificate into Firefox "Authorities"? I know where in Firefox I need to import and I believe it should be within the "Authorities" tab but I get an error "this is not a valid CA and will not be imported". I generated my CA cert with openssl. I would like corporate users to import it so that they don't get the "unknown certificate" messages for all the certs I sign for each web/FTP server in our company. Can someone please let me know if the "Authorities" store is where I should import my "custom" Certificate Authority? Thanks

How do I import a self-signed CA certificate into Firefox "Authorities"? I know where in Firefox I need to import and I believe it should be within the "Authorities" tab but I get an error "this is not a valid CA and will not be imported". I generated my CA cert with openssl. I would like corporate users to import it so that they don't get the "unknown certificate" messages for all the certs I sign for each web/FTP server in our company. Can someone please let me know if the "Authorities" store is where I should import my "custom" Certificate Authority? Thanks

Все ответы (3)

more options

I have the same problem imho this SHOULD be the right place, but firefox refuses!

more options

Apparently, I solved my issue.

I had created a cert with openssl's setting: basicConstraints=CA:false

whereas I had to set:

basicConstraints=CA:true

After regenerating the certificate, Firefox accepted to import it as an Authority.

Hope that helps.

Vieri

more options

Thanks, this post helped me figure out what was missing even through I was using makecert on Windows instead of openssl to make the test root CA cert. I ended up using makecert -cy authority to get the "Subject Type=CA" into the Basic Constraints field on my test root CA cert, which Firefox then allowed me to import as an Authority.