locked
IE Failing on certificate RRS feed

  • Question

  • I work for a large company that has their own internal network, and Web Site.

    For a year now I have hit their site and IE errors with the standard…

    There is a problem with this website's security certificate.

         The security certificate presented by this website was not issued by a trusted certificate authority.

         Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server. 

    When I ask the explanation is…

    Internet Explorer is looking for an external server to validate the certificate, but <our company> certificates are on an internal server.

    This sounds a bit bogus to me…

    1.  What questions should I ask the company find out if this is truly valid explanation?

    2.  Are there any reasons a company would do this rather than the standard way of getting a certificate.

    3.  Am I wise to not hit the site whereby transactional information is sent across the wire un-encrypted?

    4.  Is there a way to verify externally if the site is sending/receiving encrypted information?

    Thank you


    Richard Loba
    Friday, December 23, 2011 7:21 PM

Answers

  • Hi,

    Please see the following answers.

    1. This cerificate is indeed issued by your own certificate authority.

    2. They have not applied for a certificate from a trusted authority.

    3. You can still visit this website and the data is encrypted.

    4. Using Network Monitor to capture the packages between client and server.


    Juke Chou

    TechNet Community Support

    • Proposed as answer by Juke Chou Thursday, January 5, 2012 8:02 AM
    • Marked as answer by Arthur Xie Thursday, January 5, 2012 8:41 AM
    Tuesday, December 27, 2011 4:01 AM