Deploy internal CA to linux clients

redhat firefox certificate-authority

Solution 1:

For Firefox: FF stores the certificate in the user profile, you have to import the certificate for each profile on each box. For trusted CA's, the certificate should be in PEM format, and imported using the certutil command (available in nss-tools package on RedHat):

You can use this command to list the certificates:

certutil -L -d ~/.mozilla/firefox/[profile]

Then, the certificate can be imported using:

certutil -A -n 'Certificate Name' -t CT,, -d ~/.mozilla/firefox/[profile] < /path/to/certificate.pem

See http://www.dzhang.com/blog/2011/01/29/importing-exporting-firefox-certificates-from-command-line for details.

According to the chromium wiki you can use certutil for chromium. I don't know if this will work for the stock chrome too.

With a little bit of scripting it should be possible to automatically deploy your AD certificate authority in this environment.

Related

How to run GPGPU Memory Testing
where is memory gone (no, not buffers or cache)
Https for embedded devices, local addresses
How do I disable "Restart your computer to finish installing updates" popup with GPO?
VSFTPD does not allow upload with virtual users
Varnish running out of open ports, lots of SYN_SENT connections
Technology for short-lived private VMs
SCCM 2012: How to properly update the content of an application?
How to tell the Task Scheduler MMC to remember the column widths of the History?
F5 Load Balancer Resends Request On Timeout
Tracking down the cause of a Postfix "Recipient address rejected: Access denied" error
Graphite stops collecting data randomly