- This topic is empty.
February 5, 2009 at 1:14 pm #41451
I am getting a certificate error when I log in to any of my 9 ZeroShell machines. I normally just click ignore and continue but I’d like to know how to fix this problem so that it doesn’t show up.
How do I fix the certificate error problem permanently? I don’t have much experience with certificates so a step by step guide would be great if anyone has one.
KenFebruary 5, 2009 at 6:15 pm #47559imported_fulvioParticipant
The warning related to the certificate during the web login is due to the fact that the certificate x.509 of the CA used to sign the certificate of the captive portal is not trusted by your browsers. To solve the issue you can:
1) buy host certificates signed by official Certificate Authority. These certificates are automatically recognized by the web browser;
2) import the X.509 certificate of the CA of Zeroshell on every clients.
FulvioFebruary 5, 2009 at 7:51 pm #47560
Thanks for the information Fulvio. Can you give me a short description of what I should do in order to import the x.509 certificate into internet explorer? Should I be imported the host or user certificate?
KenFebruary 5, 2009 at 10:44 pm #47561imported_fulvioParticipant
A quick procedure to import the x509 certificate of the CA is to click the link CA in the authentication page of the Zeroshell’s web interface.
Notice you do not need to import host and personal certificates, but just the signing Certification Authority. This makes automatically trusted any certificates signed by it.
FulvioFebruary 5, 2009 at 11:59 pm #47562
Does the ZeroShell router have to have a correct DNS name, or can it be accessed by the IP address?
Sorry for all the questions but I seem to be really struggling with something simple! 🙂
KenApril 23, 2009 at 6:54 pm #47563prez2kMember
I was able to get the cert installed, but for some reason I can’t seem to find out how to change the setting in the captive portal to point to a name instead of an IP?
Since that is the case the certificate, no matter what it is will show an error right? since the certs point to hostnames and not IPs?
Can someone please advise on how to correct?
Also I found a great blacklist at URLBlacklist…created my own 17meg file of blocked urls but I can’t get it to load in through the web interface (timeout??) and I don’t know how to replace the built in blacklist at start up..
Booting off of CDROM….so I’d like to have it stored in the DB saved on the hard drive….
- You must be logged in to reply to this topic.