[SOLVED] The issuer of this certificate could not be found.

[aldm]

Hi,

I exported certificate from my faculty webmail (webmail.etf.unsa.ba) that uses
zimbra from firefox to .crt file. I installed this certificate to Trusted Root
Authentification Authorities, but when I open certificate in
Trusted Root Authentification Authorities, tab path it shows me:

The issuer of this certificate could not be found.

When i go to tab Details, Issuer field, it shows me:

CN = igman.etf.unsa.ba
OU = Zimbra Collaboration Suite
O = Zimbra Collaboration Suite
L = N/A
S = N/A
C = US

How can I make this certificate verified, so that it shows me:

This certificate is OK.



This is urgent!

Please help...

[phoenix]

Why is this posted in the Zimbra Desktop forum? What exactly were you trying to do?

Quote:

Originally Posted by aldm

This is urgent!

Only to you.

[aldm]

I'm trying to access zimbra mail server of my faculty with https from java midlet...so I need to import Zimbra certificate in mekeystore (keystore of j2me emulator), so I can test my midlet...

[phoenix]

Quote:

Originally Posted by aldm

I'm trying to access zimbra mail server of my faculty with https from java midlet...so I need to import Zimbra certificate in mekeystore (keystore of j2me emulator), so I can test my midlet...

I guess this should be in the Developers forum and not the Zimbra Desktop forum?

[vinzenz]

did you import the server certificate or the certificate authority?

[aldm]

Yes, i export certificate from firefox and import it in Trusted Root Authority, as
I wrote above.

Did you mean on that?

[vinzenz]

not exactly. there are two certificates zimbra generates:
- a certificate authority (ca)
- a server certificate signed with the public key of above ca

they can be found in /opt/zimbra/ssl/zimbra/ca and ../server

you have to import the ca certificate (/opt/zimbra/ssl/zimbra/ca/ca.pem) into firefox trusted authorities. then firefox can automatically verify every certificate signed by your ca, like your server certificate.

maybe you have to rename ca.pem to ca.crt in order to import it.

hope it answered your question.

p.s. of course it works with every application using certificates, not only firefox

[aldm]

What should I install to get opt/zimbra...?

Only Zimbra?

[Narev]

Quote:

Originally Posted by aldm

What should I install to get opt/zimbra...?

Only Zimbra?

Yes, /opt/zimbra is where your zimbra is installed.

[aldm]

Hi,

I installed Zimbra (and Ubuntu 8.04 before that). I found ca.crt certificate but it is issued my my domain server name (mail.amer.ba).

What it has in common with my faculty certificate?

Are you sure I can solve this problem with this approach?

And thank you for you replies...