This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

how to trust a certificate

  • 2 replies
  • 1 has this problem
  • 1 view
  • Last reply by cor-el

more options

Checking the Certificate Manager I find things such as TurkTrust Bilgi, Trust Ges. F. Secherheitssysteme, and so on. These are listed as Builtin Object Token. What is this token? Who are these people? Is there a list somewhere about whether to delete these? Should I just delete anyone I do not recognize?

FireFox 9.01 Mac OS 10.6

Thanks - jos

Checking the Certificate Manager I find things such as TurkTrust Bilgi, Trust Ges. F. Secherheitssysteme, and so on. These are listed as Builtin Object Token. What is this token? Who are these people? Is there a list somewhere about whether to delete these? Should I just delete anyone I do not recognize? FireFox 9.01 Mac OS 10.6 Thanks - jos

All Replies (2)

more options

Hi,

I think the Built-in Object Token is the root certificate store that has a list of root certificates of CAs vetted by Mozilla. Depending on your browsing habits, your region, at least some or many of these would be needed to identify secure sites for you. For eg. when you connect to a banking site or email site you need a way to know that it is the correct site. This is done for you by the CAs. Through some research and trial and error you can delete the unneeded ones. If anything goes wrong, delete the cert8.db file in your Firefox Profile Folder and Firefox will load the default settings again and recreate the file.

The thing is, one can either do it oneself to verify secure sites, secure content etc. or entrust an entity (CA - Certificate Authority) to do it for us. In the default case the CA's root certificates do it for us. We can add/delete root CAs, but please bear in mind that root CAs have superpowers.

An alternative is Convergence.

CA Glossary.

Public Key Cryptography

Modified by Vivek

more options

You can click the Edit button in the certificate manager and remove all trust bits if you do not want to use a build-in root certificate.

  • Firefox > Preferences > Advanced : Encryption: Certificates - View Certificates