如何在20个恼人的步骤中让IE8信任自签名证书

Browse to the site whose certificate you want to trust. When told “There is a problem with this website's security certificate.”, choose “Continue to this website (not recommended).” Select Tools➞Internet Options. Select Security➞Trusted sites➞Sites. Confirm the URL matches, and click “Add” then “Close”. Close the “Internet Options” dialog box with either “OK” or “Cancel”. Refresh the current page. When told “There is a problem with this website's security certificate.”, choose “Continue to this website (not recommended).” Click on “Certificate Error” at the right of the address bar and select “View certificates”. Click on “Install Certificate...”, then in the wizard, click “Next”. On the next page select “Place all certificates in the following store”. Click “Browse”, select “Trusted Root Certification Authorities”, and click “OK”. Back in the wizard, click “Next”, then “Finish”. If you get a “Security Warning” message box, click “Yes”. Dismiss the message box with “OK”. Select Tools➞Internet Options. Select Security➞Trusted sites➞Sites. Select the URL you just added, click “Remove”, then “Close”. Now shut down all running instances of IE, and start up IE again. The site’s certificate should now be trusted.

你以前在做什么?对于自签名证书，我通常会在客户机系统上本地安装证书。

您可以使用组策略将证书推送到每个系统。

如何在20个恼人的步骤中让IE8信任自签名证书

Browse to the site whose certificate you want to trust. When told “There is a problem with this website's security certificate.”, choose “Continue to this website (not recommended).” Select Tools➞Internet Options. Select Security➞Trusted sites➞Sites. Confirm the URL matches, and click “Add” then “Close”. Close the “Internet Options” dialog box with either “OK” or “Cancel”. Refresh the current page. When told “There is a problem with this website's security certificate.”, choose “Continue to this website (not recommended).” Click on “Certificate Error” at the right of the address bar and select “View certificates”. Click on “Install Certificate...”, then in the wizard, click “Next”. On the next page select “Place all certificates in the following store”. Click “Browse”, select “Trusted Root Certification Authorities”, and click “OK”. Back in the wizard, click “Next”, then “Finish”. If you get a “Security Warning” message box, click “Yes”. Dismiss the message box with “OK”. Select Tools➞Internet Options. Select Security➞Trusted sites➞Sites. Select the URL you just added, click “Remove”, then “Close”. Now shut down all running instances of IE, and start up IE again. The site’s certificate should now be trusted.

您应该将证书作为受信任的权威安装在计算机上。

有许多方法可以做到这一点，例如，您可以使用mmc (start/run/mmc)，添加证书管理单元，然后从那里安装自签名证书。

这是没有办法的，因为证书的全部意义是警告用户，如果他正在访问的网站没有经过可信的权威机构的认证。

如何安装CA根证书，而不是网站证书:(IE8, Win7)

When you bring up the certificate details you are looking at the website cert, and not the CA cert. The General tab will say, "This certificate cannot be verified..." You need to select the CA by clicking on the Certification Path tab, and selecting the top most cert in the path. It should have a red X icon, and should say, "This CA Root certificate is not trusted because..." Click the View Certificate button, and on this new General tab you should see, "This CA Root is not trusted..." This is the certificate that you want to import into the Trusted Root Certificate Authority.

一旦您导入了CA，您就不需要再导入常规的网站证书，该证书将与您刚刚导入的CA匹配，IE会将一切视为正常工作。您不需要以管理员身份运行IE，也不需要先将站点添加到可信站点。导入完成后需要重新启动IE。

您可以使用GPO在域内使用证书。

但我的问题是Internet Explorer 8，即使证书在受信任的根证书存储中…它仍然不会说它是一个可信的网站。

有了这个和司机的签字，现在需要完成…我开始怀疑谁拥有我的电脑了!