Brian, You are correct. Your browser comes with an "established" set of certificates pre-installed. The reason people need to "accept" your certificate is part of the security. I first need to know I can trust the CA so I (as the end user) get the option of accepting them as secure or not by saving their certificate info in my browser. Actually, the only reason MS and others include the "default" certificates is because most people don't have the foggiest idea of what they are or what they mean. Your best bet is to (a) use one of the better-known, ie: more expensive one's or (b) post a brief note explaining to people that they need to say "Yes" to the certificate before they get the little "yellow lock" (most people understand that!). You'll find that this is not nearly as big of an issue as you may think.
--Joe ----- Original Message ----- From: "Brian C. Bassler" <[EMAIL PROTECTED]> To: "sambar List Member" <[EMAIL PROTECTED]> Sent: Saturday, November 15, 2003 6:47 AM Subject: [sambar] need help with SSL Its OK if the user chooses to install in their first visit. However, if I go to Paypal and set up and account or if I go to a bank and establish online banking, I don't get that message. Is that because they're using a recognized CA and the one I'm using is not so well recognized? I need to find out how to load a secure page without getting that message. It could give potiential customers a not-so-confident feeling. Thanks, Brian On 15 Nov 2003 at 9:21, Claus Lund wrote: > It's looking OK to me. You get the first in IE when the certificat is not installed. If you install the certificat on your browser, you won't se the warning it any more - and your user have to do the same. > > You can chek the installed certificats in IE, and you will find a lot from Verisign and others - and when you install your own, it wil be there as well. > > Claus > > On 15/Nov/2003 02:25:49, [EMAIL PROTECTED] (woodsman) wrote: > > Hi all, > > > > I have a temp cert from Comodo (Instant SSL) and I thought I had > > installed it properly but I'm still getting the error "The security > > certificate was issued by a company you have chosen not to trust . . > > ", the first in IE's security warning box. The other two are OK; my > > FQDN is valid and recognized and the name on the cert is valid. > > > > see https://www.cad-concepts.net/ccsecure/ssltest.htm > > > > I'm running Sambar 5.3 Pro on W2K Pro. > > > > I've followed the install instructions that came with the cert to the > > letter. But I've done some digging and have read about Group > > Policies, Trusted Root Authorities Store, etc. Not sure if I need to > > deal with it or, if so, how on this machine. > > > > I would really appreciate some help, Thanks, > > > > Brian > > > > ------------------------------------------------------- > > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > > > > > > > > > > > ------------------------------------------------------- > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/ ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
