Skip to end of metadata
Go to start of metadata

Overview

Most web browsers come with a built-in list of certificate authorities. CAs sell certificates to banks, online retailers, and others providing secure services. These certificates verify that the site in question is really who it says it is.

For certain widely-used services (GroupWise WebAccess, Blackboard, MaineStreet, etc), USM and UMS have purchased certficates from CAs so that most browsers will "trust" their identity automatically. For other less-often used services (internal, development, or testing services), we may create our own certificates in house rather than purchasing them.

You can import USM's and UMS's Certificate Authorities or "root certificates" to tell your browser to "trust" any site with a certificate minted by USM or UMS. These steps are appropriate and safe to undertake on any USM owned machine or any other machine that is regularly used by a USM employee.

USM and UMS Certificate Authority Downloads

Importing Certificate Authorities

Firefox:

  1. Click on the link and choose "Trust this CA to identify websites."

Safari:

Mac OS X 10.5 (Leopard)

  1. Click on the link, and save the certificate file to your computer.
  2. Locate and double-click on the file you just saved.
  3. Apple's Keychain Access program will open. When prompted, click on the drop-down menu, and add the certificate to your System keychain.

Mac OS X 10.4 (Tiger)

  1. Click on the link, and save the certificate file to your computer.
  2. Locate and double-click on the file you just saved.
  3. Apple's Keychain Access program will open. When prompted, click on the drop-down menu, and add the certificate to your X509 Anchors keychain.

Internet Explorer:

  1. Click on the link and choose to Open the file.
  2. On the Certificate screen, choose Install Certificate.
  3. Allow Windows to Automatically select the certificate store based on the type of certificate.
  4. Choose Yes to install the certificate.

Opera:

  1. Click on the link and choose "Install," then "OK."
  2. Return to the Opera main window and choose Tools/ Preferences/ Advanced.
  3. Choose Security and click "Manage certificates."
  4. Click on the Authorities tab.
  5. Locate and double-click "Organizational CA."
  6. (Recommended) CLEAR the checkmark labeled "Warn me before using this certificate."
  7. Repeat steps 5-6 for "ca1.unet.maine.edu."

Thunderbird:

  1. Right-click the link and save the .crt file.
  2. Return to Thunderbird and choose (Edit or Tools)/ Preferences/ Privacy/ Security.
  3. Click "View Certificates."
  4. Choose "Authorities" and click "Import."
  5. Locate and choose the .crt file you saved in step 1.
  6. Choose "Trust this CA to identify websites."