1,923 questions
Hi,
When you click the http error what is the message you get on the screen? Please provide that error or screenshot.
Microsoft Internal CA Issues certificate not getting trusted on
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 31%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFF%3C/text%3E%3C/svg%3E)
FARI FARIS
31
Reputation points
Hello Forum Members,
Good Day,
I have implemented Internal Microsoft CA server and issued certificate to our internal web server by having CSR from the server, we noticed that the web server getting trusted and secure pad lock in the IE Browsers only. All other browsers prompting https error, I have tried below.
- Imported the Root CA and subjected certificate to all computers and to the browsers
- Since the Computers are in Domain network, pushed the root CA via group policy.
However the Certificate still on the same error on all other browser's, how can we fix the problem to have trusted on all the browsers to utilize the internal CA
Internal CA Server : Windows Server 2012,
Appreciated any expert advise.
Thank you.
Windows for business | Windows Server | Devices and deployment | Configure application groups
Microsoft Security | Microsoft Authenticator
9,366 questions
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 27%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGV%3C/text%3E%3C/svg%3E)
G, Veeramani 0 Reputation points2023-09-05T09:32:48.3566667+00:00 am also facing same issue in my environment
Sign in to comment
4 answers
Sort by: Most helpful
-
-
FARI FARIS 31 Reputation points
2022-09-24T14:03:30.797+00:00 
HI Many thanks for your reply. attached the screen shot,
Note. Hide the domain for security
reason -
G, Veeramani 0 Reputation points
2023-09-05T09:32:25.6133333+00:00 Did you get the solution for the reported issue
Sign in to comment -
-
JimmySalian-2011 42,511 Reputation points2022-09-24T17:07:14.657+00:00 Hi,
Does the CN name matches your WebURL? as in URL is supportdemo.contoso.com and in the certificate the CN is set to supportdemo.contoso.com?
Can you provide the other browser details that is not working version details.
Thanks.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 68%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELT%3C/text%3E%3C/svg%3E)
Limitless Technology 44,776 Reputation points2022-09-27T09:01:13.097+00:00 Hello there,
This message usually presents when you are using an SSL certificate that has not been issued by a known Root CA.
What can happen in the scenario you are experiencing is usually caused by one of the following:
- Your SSL certificate was signed/authorized by a Root CA that your browser does not recognize
- Your SSL certificate is a self-signed certificate, which is mainly used in testing and not recommended in production environments.
This article provides a workaround for an issue where valid root CA certificates that are distributed by using GPO appear as untrusted https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/valid-root-ca-certificates-untrusted
---------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept it as an answer--