Thunderbird 78 certificate import problems using GPO or Registry
Debug it using the Developers error console. Try using ASCII (PEM) instead of Binary (DER) certs.
Tag: certificates
THUNDERBIRD | GPO or Registry | Certificate handling
Basics: https://bytesandbones.wordpress.com/2019/09/30/thunderbird-gpo-admx Via Registry: HKCU\Software\Policies\Mozilla\Thunderbird\Certificates\Install\1 = “mycert.der” or Software\Policies\Mozilla\Thunderbird\Certificates\Install\2 = “\\MYHOST\Users\username\mycert.pem” or Software\Policies\Mozilla\Thunderbird\Certificates\Install\3 = “C:\CERTS\mycert.pem” as REG_EXPAND_SZ. If you define only a file name without a path Thunderbird searches %USERPROFILE%\AppData\Local\Thunderbird\Certificates%USERPROFILE%\AppData\Roaming\Thunderbird\Certificates for your files. Via GPO: Use the user branch. Define full path file location or file names only. If you specify only a file […]
CAS genesisWorld | mobile apps | ssl certificates
Create a cert: https://bytesandbones.wordpress.com/2019/11/01/windows-server-2019-self-signed-certificates-for-iis/ You can’t select a cert via the CAS Server Manager. The IIS handles the encryption mess for you. Install IIS as a role. Run the IIS Manager. Goto Default Web Site. Goto Bindings. Add a new https element, edit the properties and select your just created cert. Do not start this […]
Windows Server 2019 | Self Signed Certificates for IIS
Powershelling: $mycert=@{ Subject =’CN=myhost.mydomain.tld’; DnsName =’myhost.mydomain.tld’; KeyLength =2048; HashAlgorithm =’SHA256′; KeyUsage =’DigitalSignature’; KeyExportPolicy =’Exportable’; KeySpec =’Signature’; NotAfter =(Get-Date).AddYears(10); } New-SelfSignedCertificate @mycert
Chrome // Windows // Accept all certs from localhost
chrome.exe –allow-insecure-localhost
bytes and bones 