Problems access website, security certificate error

[jnelsoninjax]

OK, I work on a Navy base, and when I try to go to the website, I can view the front page just fine, but when I attempt to go to any other pages, FF refuses to allow me to go, sighting that the security certificate is invalid. Now in any other browsers I can ignore the warning and continue to browse the page. Now they have a link on the top of the page that says: Click here if you are seeing website security errors. When I go to the link I see this:

  Quote

Certificate Authority

Why You Saw a Security Error

Your browser is looking for a DoD Root Certificate, which is a digital document providing the identity of a web site or individuals. You can download and install the certificate using the directions below.

Fixing the Certificate Error (Windows OS only)

1. Open Internet Explorer and go to the CA Certificate download page.
2. Click the link called "Download Root CA 2 Certificate." A popup will appear.
3. Click "Open." The Certificate Window will appear.
4. In the left frame, open the subfolders until you see the the "Certificates" folder. The frame on the right will display a list of certificates.
5. Double-click on the "DoD Root CA 2" certificate. You'll probably see two of them, so double-click the first one. A popup will appear.
6. Click the "Install Certificate..." button. The Certificate Import Wizard will open.
7. Select the "Place all certificates in the following store" and click "Browse."
8. Choose "Trusted Root Certification Authorities" and click "Ok."
9. Click "Next"and "Finish."
10. Click the next two "Ok" buttons and close the Certificates window.
    

Now there is no links, so I do not know where I am supposed to go to!

the website that I am trying to go to is http://www.cnic.navy...ville/index.htm if any one can help me figure out how to get the certificate, I would appreciate it!

[redvamp128]

If you can instead of choosing Ignore in the other browsers- click save- then in Firefox open up - Tools- Options- Advanced tab-Encryption tab- then view certificates then choose import.

That should then allow Firefox to go to the site-

Though in firfox if I click a link and then wait-- I get the untrusted page-

Which you could choose to ignore

[jnelsoninjax]

I do not have any options of saving in the other browsers, and in FF when I go to any link besides the main page, I get a pop up message stating that the security certificate is invalid, never get any option for ignoring. Here is a screenshot of what I get from IE:

[redvamp128]

You could try this in IE-- may work-- May not -- Found A DOD CA trust chain-- (from an official Department of Defense site)

Follow the links and import all--

It does have the CA Root 2 listed on the page which is what the website is showing it is when viewing the invalid certificate.

http://dodpki.c3pki....mil/rootca.html

Save all to hard drive-- on the download links-- then find in folder-- right click choose install- then automatic.

After doing this and restarting IE and Firefox the errors go away.

You need to install the DOD CA-2 root certificate and the DOD CA-13 intermediate certificate.

http://dodpki.c3pki.den.disa.mil/

http://dodpki.c3pki....mil/rootca.html - DoD Class 3 PKI - Obtaining the Root CA Certificate

https://www.dodpke.com/InstallRoot/

You may also have to import each one through IE too-- but for me I already had some of them installed dealing with the VA.... Though Now I can view in IE without those errors the site you listed above.

[jnelsoninjax]

Thanks redvamp! It took almost 20 mins to install the damn things, but it finally is letting me view the page! Typical government, rather then fixing the issue, they just want us to pretend that it is not an issue, or it is our problem, and make us do the hard work! :D

[redvamp128]

  On 21/08/2010 at 04:07, jnelsoninjax said:

Thanks redvamp! It took almost 20 mins to install the damn things, but it finally is letting me view the page! Typical government, rather then fixing the issue, they just want us to pretend that it is not an issue, or it is our problem, and make us do the hard work! :D

No problem-- Just remember-- To save those Ca's to a stick most don't expire til 2015. That way should you have to reinstall -- or have another computer you are using you won't have to web find them.