It's all about the answers!

Ask a question
QuestionsTagsUsersBadges
Guidelines | FAQ
Follow this question
Question details

×10,960

question asked: Jan 24 '17, 5:45 p.m.
question was seen: 1,429 times
last updated: Jan 25 '17, 3:54 p.m.

Related questions

untrusted certificate prompt using screen capture tool

0
Brett Bohnn (94111157) | asked Jan 24 '17, 5:45 p.m.

Hi,

I have updated the expired singer certificate provided with a 5.0.2 tomcat installation (the ibm-team certificate) and I also applied this fix http://www-01.ibm.com/support/docview.wss?uid=swg21994660 for the revoked certificate that prevented access to the screen capture tool.

I am not sure where this untrusted certificate is and how to get passed this prompt every time I use the screen capture tool:



Thanks,
Brett

Accepted answer

0
permanent link
Donald Nong (14.5k614) | answered Jan 24 '17, 7:25 p.m.

This is expected, as you have a mismatched SSL certificate - the certificate is self-signed to "localhost", and the web site you are using is "clmlocal.ibm.com". As long as you use a trusted certificate (usually CA-signed) which matches the web site's host, this dialog should disappear.

Brett Bohnn selected this answer as the correct answer
Comments
Brett Bohnn commented Jan 24 '17, 8:20 p.m.

Hi Donald,

I thought the same and used ikeyman to delete the ibm-team certificate that is expired and uses localhost and created a new certificate using clmlocal.ibm.com. I still get the same so I am missing something and will work it out.

Thanks

Kevin Ramer commented Jan 25 '17, 3:54 p.m.

By the time one sees the "website is untrusted" the user's local JVM is what is in control.  There's nothing you can do server-side to prevent this with self-signed or  "private corporate" signing authority. 

It is possible ( but not practical or even recommended) to install the signer of the RTC/RQM application certificates into the JVM/lib/security/cacerts as a trusted certificate on the client JVM.

Your answer

Register or to post your answer.


Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.