untrusted certificate prompt using screen capture tool
Hi,
I have updated the expired singer certificate provided with a 5.0.2 tomcat installation (the ibm-team certificate) and I also applied this fix http://www-01.ibm.com/support/docview.wss?uid=swg21994660 for the revoked certificate that prevented access to the screen capture tool.
I am not sure where this untrusted certificate is and how to get passed this prompt every time I use the screen capture tool:
Thanks,
Brett
Accepted answer
This is expected, as you have a mismatched SSL certificate - the certificate is self-signed to "localhost", and the web site you are using is "clmlocal.ibm.com". As long as you use a trusted certificate (usually CA-signed) which matches the web site's host, this dialog should disappear.
Comments
Hi Donald,
I thought the same and used ikeyman to delete the ibm-team certificate that is expired and uses localhost and created a new certificate using clmlocal.ibm.com. I still get the same so I am missing something and will work it out.
Thanks
By the time one sees the "website is untrusted" the user's local JVM is what is in control. There's nothing you can do server-side to prevent this with self-signed or "private corporate" signing authority.
It is possible ( but not practical or even recommended) to install the signer of the RTC/RQM application certificates into the JVM/lib/security/cacerts as a trusted certificate on the client JVM.