Hi all, Would like to ask about SSL certificate. I have a Web Server installed with SSL certificate. The cert is signed by a CA created by myself (through MS Cert Server). When I go to the web site by https, a security alert prompt saying that the CA is non-trust and I need to press "Yes" in order to access the web site. Is there anyway that I can bypass the security alert and go to the website directory ? I can accept one-time installation on workstation level. I know I can achieve it by installing the Root trust for that CA so that the client workstation will trust each cert issued by that CA as I've tried it successfully. However, I would be more restrictive that I want to trust that cert only. That is, I trust that CA issue the cert to my WebServer ONLY. That is, after the on-time installation, I can access that website directory. When there is another SSL website installed with a cert signed by my CA also, my workstation will prompt the security alert. Or in another word, is there any way to trust the cert instead of trusting the CA ? I've tried to install the cert by click the "Insall certificate" button, but it only install on the intermediate cert. Once I close the IE and go to the website again, the security alert prompt. Any solution? Thanks.

I think I've got an answer for this one. Was playing around with a server which I self-issued a SSL certificate for and figured out how to do what you're asking. When you're asked if you want to to continue to the site (the box with three status icons) you need to make sure that the first one is the only one with an issue. The certificate needs to match the site name and it has to be valid. The only one that should give a warning should be the one that says it's not been issued by a CA you trust. Click the View Certificate button. Now go to the Certification Path tab. Click on the CA root (should have a red X on it). Click the View Certificate button. Now click the Install Certificate button. Follow the wizard using the default options. It will ask you to verify the choice, click Yes. Now click OK, then OK again. Choose No you don't want to continue. Now to test it close all open IE windows, then open a new window and go back to the site. From now on you should not be prompted to continue, it should just go there. The trick is that you don't want to just install the SSL certificate, you need to install the CA certificate so that your computer will trust yourdomain.com as a trusted CA. You shouldn't have any more problems. You can remove the CA certificate if you need to by going to Tools > Internet Options > Content Tab > Certificates Button. Find the name of your local CA and choose to remove it. You will now be prompted to access the site again. Worked for me, post back if it does for you.