Skip to content

Adding self signed certificate to your browser

Jump to bottom
Ruchira edited this page Dec 3, 2017 · 8 revisions

Apache SSL Certificate

The development environment comes with a self signed certificate for the domain *.orangehrmdev.com. To get your orangehrm instances to be trusted by the browser, you have to follow the below steps.

Setup your instance

  1. Checkout to your code to a folder name that follows the pattern *.orangehrmdev.com. Eg: trunk.orangehrmdev.com. Add trunk.orangehrmdev.com to your host /etc/hosts file 127.0.0.1 localhost trunk.orangehrmdev.com

Export the certificate

  1. Access the instance in chrome (eg: https://trunk.orangehrmdev.com:9056)
  2. When you get the "Your connection is not private" message, go into development tools
  3. Click on security tab.
  4. Click "View Certificate" and go to "Details" tab
  5. Click Export
  6. Choose the first option (Base64 Encoded, ASCII, Single Certificate) and Save

Install certutil

  1. Install the tool certutil in your host (in ubuntu sudo apt-get install libnss3-tools)

Import certification authority (Chrome)

  1. Add the file exported above to the certificate store using coreutil certutil -d sql:$HOME/.pki/nssdb -A -t "P,," -n _.orangehrmdev.com -i _.orangehrmdev.com
  2. Verify that it is added correctly: certutil -d sql:/home/ruchira/.pki/nssdb -L
  3. Restart chrome and visit the page (eg: https://trunk.orangehrmdev.com:9056).
  4. It should now show up in green as a trusted site.

Import certification authority (Firefox)

1.To Do

Clone this wiki locally