1.10 Configuring the Browser for the eDirectory CA

If you didn’t receive an offer to permanently store the security warning exception, you can configure your Web browser to trust the eDirectory-based certificate authority by completing the instructions in the next two sections. Otherwise, skip to Section 1.11, Enabling Pop-Ups for iManager.

1.10.1 Exporting the CA’s Self-Signed Certificate

  1. In iManager, click the Roles and Tasks icon Roles and Tasks icon.

  2. Click Novell Certificate Server > Configure Certificate Authority.

  3. Click the Certificates tab, then select the check box for the self-signed certificate.

  4. Click the Export sub-tab.

  5. Deselect Export Private Key.

    The Export Format changes to DER.

  6. Click Next.

  7. Click Save the Exported Certificate and save the file to disk, noting the filename and location if indicated.

  8. Click Close > OK.

  9. Find the file you just saved. By default it is usually on the desktop.

  10. To configure Mozilla Firefox on Windows, continue with Importing the CA Certificate into Mozilla Firefox 3.6 on Windows.

    Instructions for configuring other browsers are in Eliminating Browser Certificate Errors in the OES 2 SP3: Planning and Implementation Guide.

1.10.2 Importing the CA Certificate into Mozilla Firefox 3.6 on Windows

  1. In Firefox, click Tools > Options

  2. Select the Advanced tab.

  3. Select the Encryption tab.

  4. Click the View Certificates button.

  5. Select the Authorities tab, then click Import.

  6. Browse to the certificate file you downloaded in Exporting the CA’s Self-Signed Certificate and click Open.

  7. Select Trust this CA to identify Web sites, then click OK > OK > OK.

    Firefox now trusts certificates from the servers in your getting-started lab’s tree.

  8. To verify success, close all instances of Firefox, then restart the browser and log in to iManager again.

    The certificate warning doesn’t appear.

1.10.3 Importing the CA Certificate into Windows Explorer 8 on Windows

  1. In Internet Explorer, click Tools > Internet Options.

  2. Click the Content tab.

  3. Click the Certificates button.

  4. Select the Trusted Root Certification Authorities tab.

  5. Click the Import button.

  6. Click Next.

  7. Browse to the certificate file you downloaded in Exporting the CA’s Self-Signed Certificate and click Open.

  8. Click Next.

  9. Click Finish > Yes > OK > Close > OK.