How do I configure my web browser to use the WebMarshal HTTPS Root Certificate?


This article applies to:

  • WebMarshal 6.X and 7.X
  • Internet Explorer (current versions)
  • Firefox (current versions)
  • Chrome (current versions)
  • Opera
  • Safari
  • Windows services
  • Sun JRE

Question:

  • How do I configure my web browser to use the WebMarshal security certificate?
  • How do I configure an application that runs as a Windows service to use HTTPS Root Certificate?

Information:

If you use Internet Explorer in a Windows domain, the easiest way of setting up the HTTPS Root Certificate is with Group Policy. For details, see the following article:

  • Q12014 : How do I push the WebMarshal HTTPS Root Certificate to all users in an organization using Microsoft windows group policy?

If you use other browsers and applications, there are a number of other ways to set up use of the WebMarshal HTTPS Root Certificate.

  • The recommended way is by accessing the http://webmarshal.home/ website from your web browser. See below.
  • The alternative way is to export the WebMarshal HTTPS Root Certificate which is detailed further below.  
  • For applications that run as Windows services and update over the web, you can import the WebMarshal HTTPS Root Certificate to the Local Computer Certificate Store.
  • For the Sun Java Runtime Environment (JRE), you may need to import the WebMarshal HTTPS Root Certificate to the Java Certificate Store.

Internet Explorer
Google Chrome

  1. Click Install Root content inspection certificate. Then click Open file.
  2. Click Install Certificate and click Next.
  3. Select Place all certificates in the following store.
  4. Browse to the Trusted Root Certification Authorities store and click OK.  
  5. Click Next then Finish. Click Yes to the Security Warning

Note: In some versions of Windows the option 'automatically select the certificate store' does not select the Root store. The above instructions work for all versions as of the date of this article.

Opera

  1. Click Install Root content inspection certificate.
  2. Click Install and click OK.

Firefox

  1. Click Install Root content inspection certificate. Check the Trust this CA to identify web sites box.
  2. Click OK.

Safari

  1. Click Install Root content inspection certificate.
  2. Press CTRL and click the Mouse Button. Click Open.
  3. Click OK to add the Certificate to the KeyChain for the login.
  4. Click Always Trust. Enter the Administrators Username and Password. 
  5. Click Lock the Login Key Chain.

Note: Versions of Safari after 3.0.3 may not display the http://webmarshal.home/ website correctly.

Other Applications

To allow Windows services to access HTTPS sites through WebMarshal, import the Root Certificate into the Local Computer certificate store.

Note: MailMarshal SMTP does not require this action. For help with MailMarshal SMTP SpamCensor updating, see article : Q11718.

  1. Click Install Root content inspection certificate. Then click Open file.
  2. Click Install Certificate and click Next.
  3. Select Place all certificates in the following store. Click Browse.
  4. On the Select Certificate Store window, check the box Show Physical Stores.
  5. From the list, expand Trusted Root Certification Authorities, and select the Local Computer entry.
     
  6. Click OK.
  7. Click Next then Finish

 

Installing an exported WebMarshal HTTPS Root Certificate

Follow the instructions below if you want to install a HTTPS security certificate that was exported from WebMarshal.

Internet Explorer

  1. Open Internet Explorer click on Tools and select Internet Options.  
  2. Select the Content tab.
  3. Click the Certificates button. Select the Trusted Root Certification Authorities tab.
  4. Click Import and follow the prompts. Browse to the certificate exported from WebMarshal. 
  5. Click OK.

Google Chrome

  1. Open Chrome. From the menu select Settings.
  2. In the HTTPS/SSL section, click Manage Certificates.
  3. Click Import.  Browse to the certificate exported from WebMarshal. 
  4. On the Certificate Store window, select Place all certificates in the following store.
  5. Browse to the Trusted Root Certification Authorities store and click OK.  
  6. Click Next then Finish.

Firefox

  1. Open Firefox click on Tools and select Options.  
  2. Select the Advanced option and then the Encryption tab.
  3. Click the View Certificates button. Select the Authorities tab.
  4. Click Import and browse to the certificate exported from WebMarshal.
  5. Click OK.

Opera

  1. Open Opera click on Tools and select Preferences.  
  2. Select the Advanced tab and then the Security option in the left pane.
  3. Click the Manage Certificates button. 
  4. Click Import. Select All Files  from the Files of type field. Browse to the certificate exported from WebMarshal.
  5. Click OK and OK again.

Safari

Safari uses Apple's KeyChain technology for managing Security certificates.

Sun JRE (Java)

If you are using Sun JRE through Internet Explorer, JRE will use the root certificate you imported into Internet Explorer.

For other browsers or standalone applications, you can import the certificate into the JRE certificate store (JRE 1.5.0 and above).

  1. Save the WebMarshal Root Certificate to a file.
  2. Open the Java Control Panel (found in Windows Control Panel).
  3. Click the Security tab. Click Certificates.
  4. Select the certificate type "Secure Site CA."
  5. Click Import. Browse to the exported WebMarshal certificate file.

    Note: You must select "all files" in the type menu of the browse window.
  6. On the Browse window, click Open.
  7. On the Java windows, click Close and then OK.

Notes:

The WebMarshal HTTPS Root Certificate can be used by any web browser. For help on its installation, see your web browser's help.

Last Modified 1/27/2016.
https://support.trustwave.com/kb/KnowledgebaseArticle12015.aspx