Install the self-signed root certificates¶
The CEDAR Docker setup uses self-signed certificates for the *.metadatacenter.orgx
domains.
In order for these to work with your browser, you will need to trust our CA by importing its certificate into your truststore.
The process depends on which browser you use. Please follow one - or both - of the methods desribed below:
Add to Firefox
¶
If you use Firefox, you will need to add the root CA certificate to the trusted list of the browser.
The process is the following:
- Open the
Preferences
. - In the
Find in Preferences
input typecertificates
. - Click the
View Certificates...
button. - Make sure the
Authorities
tab is open. - Click
Import
. - Browse for
ca.crt
file. It will be located in:${CEDAR_HOME}/cedar-docker-deploy/cedar-assets/ca/
. - Click both checkbox:
Trust this CA to identify websites.
Trust this CA to identify email users.
- Click
OK
Add to Keychain Access
¶
If you use Chrome or Safari, or other browsers that use the system's trust store for certificates, you will need to add the root CA certificate to Keychain Access
.
The process is the following:
- Using
Finder
navigate to:${CEDAR_HOME}/cedar-docker-deploy/cedar-assets/ca/
. - Double-click the
ca.crt
file. - The application called
Keychain Access
will be launched. - A dialog will pop up, prompting for a location for the certificate. The
login
will be preselected. Click theAdd
button. - Locate the certificate you just added. It should be either in System or login Keychain. Search for
metadatacenter
. - The certificate will have a white
x
in a red circle, meaning it is not trusted. - Open it by double-clicking it.
- Expand the
Trust
branch on the top. - Change the dropdown labeled
When using this certificate:
toAlways Trust
. - Close the popup.
- You will be prompted for your password.
- You should see the icon of the certificate having a white cross inside a blue circle.
- You are done.