为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

话题已存档。 如果需要帮助请提出新问题。

Windows Certificate Authority

  • 1 个回答
  • 1 人有此问题
  • 22 次查看
  • 最后回复者为 guigs

jwells2
jwells2
more options

My company has a Windows internal certificate authority (2012R2) I am trying to find documentation on what settings are needed to generate certificates compliant for use with Firefox.

Certificates created using this internal CA get the below error when using Firefox, although IE and Chrome do not. Hopefully, there is some documentation on what is needed to generate SSL certificate compliant with Firefox standards.

SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED The certificate was signed using a signature algorithm that is disabled because it is not secure.

My company has a Windows internal certificate authority (2012R2) I am trying to find documentation on what settings are needed to generate certificates compliant for use with Firefox. Certificates created using this internal CA get the below error when using Firefox, although IE and Chrome do not. Hopefully, there is some documentation on what is needed to generate SSL certificate compliant with Firefox standards. SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED The certificate was signed using a signature algorithm that is disabled because it is not secure.

所有回复 (1)

guigs
guigs
more options

Can you use a different algorithm to sign your self-signed certificate?

This is the certificate root store policy for reference https://www.mozilla.org/en-US/about/g.../#maintenance

I would read almost all of it, but it looks like that error is running into this section -> 5.1 Algorithms

If I can't help solve this certificates@mozilla.org might. :-)

由guigs于修改