Re: Trust a cert and cert purpose

From: Bernard (qbernard_at_hotmail.com.discuss)
Date: 11/10/04

• Next message: Bernard: "Re: IIS Reverse Lookup"
• Previous message: David Cordes: "Re: What would prevent an ISAPI extension from opening a socket on IIS 6?"
• In reply to: jenny: "Trust a cert and cert purpose"
• Next in thread: jenny: "Re: Trust a cert and cert purpose"
• Reply: jenny: "Re: Trust a cert and cert purpose"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 10 Nov 2004 11:46:36 +0800

> Is there anyway that I can bypass the security alert and go to the website
> directory ?

Error Message: This Security Certificate Was Issued by a Company that You
Have Not Chosen to Trust
http://support.microsoft.com/?id=297681

-- 
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/
"jenny" <jenny@discussions.microsoft.com> wrote in message
news:B146E365-27FB-4759-90AB-D8A3CC3D2115@microsoft.com...
> Hi all,
>
> Would like to ask about SSL certificate.
>
> I have a Web Server installed with SSL certificate. The cert is signed by
a
> CA created by myself (through MS Cert Server). When I go to the web site
by
> https, a security alert prompt saying that the CA is non-trust and I need
to
> press "Yes" in order to access the web site.
>
> Is there anyway that I can bypass the security alert and go to the website
> directory ? I can accept one-time installation on workstation level. I
know I
> can achieve it by installing the Root trust for that CA so that the client
> workstation will trust each cert issued by that CA as I've tried it
> successfully. However, I would be more restrictive that I want to trust
that
> cert only. That is, I trust that CA issue the cert to my WebServer ONLY.
That
> is, after the on-time installation, I can access that website directory.
When
> there is another SSL website installed with a cert signed by my CA also,
my
> workstation will prompt the security alert.
> Or in another word, is there any way to trust the cert instead of trusting
> the CA ? I've tried to install the cert by click the "Insall certificate"
> button, but it only install on the intermediate cert. Once I close the IE
and
> go to the website again, the security alert prompt. Any solution? Thanks.
>
> Also, I have questions on setting the cert purpose:
> When I select a cert at the IE -> Option -> Content -> Certificate ->
> highlight any build in cert, the "certificate purpose" display at the
bottom
> can be many types: e.g. for email, for server authentication etc.
> For those cert signed by the CA created by myself (e.g. MS Cert Server),
the
> "certificate purpose" is "All". How to configurate the certicate purpose
> while generate the cert ?
> Thanks.

---

• Next message: Bernard: "Re: IIS Reverse Lookup"
• Previous message: David Cordes: "Re: What would prevent an ISAPI extension from opening a socket on IIS 6?"
• In reply to: jenny: "Trust a cert and cert purpose"
• Next in thread: jenny: "Re: Trust a cert and cert purpose"
• Reply: jenny: "Re: Trust a cert and cert purpose"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)