This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

FF doesn't read enterprise ca certificate from /etc/ssl/certs. How to change this?

more options

Enterprise own root and intermediate ca certificates are stored within /etc/ssl/certs. Hash links are done. However to make FF accept the server certificate, - avoid message "connection not secure", - the issuer certificate must be installed into FF certification store. This is boring, as it must be done foer every user individally! How to tell FF to get the CA-Certificates from linux standard directory /etc/ssl/certs?

Enterprise own root and intermediate ca certificates are stored within /etc/ssl/certs. Hash links are done. However to make FF accept the server certificate, - avoid message "connection not secure", - the issuer certificate must be installed into FF certification store. This is boring, as it must be done foer every user individally! How to tell FF to get the CA-Certificates from linux standard directory /etc/ssl/certs?

All Replies (1)

more options

The short answer is, you don't. But you can create a script, which adds the certificate into the user's Firefox profile, using nss-tools, specifically certutil.

Balázs Meskó moo ko soppali ci