SecureNT Intranet SSL

SSL/TLS Certificates for Internal Networks.

Installing IntranetSSL Certificates

Step-By-Step instructions for installing IntranetSSL Certificates in different scenarios.

Issued Bundle

When you request SecureNT Intranet SSL, we send you an email with a ZIP file. This bundle contains all necessary files required to install our SSL Certificates.

IntranetSSL.zip

description

server.cer

Issued SSL Certificate

description

serverkey.cer

Private Key

If you have shared CSR then this file is on your server where you generated the CSR. So, so it is not included.

description

SecureNT Intranet Root CA.cer

SecureNT Intranet Root Certificate

description

SecureNT Intranet Intermediate CA.cer

SecureNT Intranet Intermediate Certificate

folder_zip

SecureNT CA-Bundle.cer

SecureNT CA Bundle (Root + Intermediate)

folder_zip

SecureNT CA-Bundle.pfx

SecureNT CA Bundle (Root + Intermediate)

SecureNT CA Bundle (Root + Intermediate) in PFX format. Please note PFX file password is "" (null).

folder_zip

server.pfx

Issued SSL Certificate with the Root Certificates and Private Key in PFX (P12 or PKCS#12) format. Please note PFX file is password protected. Password is mentioned in the mail.

folder_zip

server.p7b

Issued SSL Certificate with the Root Certificates in P7B format. This file is issued only when CSR is shared by the customer.

Installation on the
Server

Here we install the SSL certificate on the server that hosts your web application.

Method 1 - Installation using individual files.

Step 1 - Installing Certificates

On the server, you must install these issued certificates.

  • server.cer
  • SecureNT Intranet Root CA.cer
  • SecureNT Intranet Intermediate CA.cer

Step 2 - Installing Private Key

if you have NOT provided your own CSR while requesting IntranetSSL Certificate, you will have to install the Private Key also.

  • serverkey.cer
Method 2 - Installation using the provided PFX format.

If you have NOT provided your own CSR while requesting IntranetSSL Certificate, you can just install the server.pfx file on your server and you are done!

Method 3 - Installation using the provided P7B format.

If you HAVE provided your own CSR while requesting IntranetSSL Certificate, you can install the server.p7b file on your server along with your own private key file.

info

But frequently, things are not straightforward. The installation procedure may vary based on the operating system and web server being used. On this subject, there is a ton of information online, so it won't be rehashed here. However, if you run into any problems send us an email at support@intranetssl.net with following details -

  • Server's Operating System with Version
  • Web Server with Version
  • Steps you followed to install our SSL Certificates.
  • Error (if any) you got while installing our SSL Certificates.

If you are installing SSL Certificates for SQL Encryption, or using our SSL Certificates on Windows in Azure environment, let us know in the certificate request form as in both of these cases a special PFX file is required.

Installation on
Windows Clients

Steps to install SecureNT Intranet CA Certificates on Windows Client PCs

Method 1 - Installation of Root and Intermediate Certificates individually

Follow below mentioned steps for installation of SecureNT Intranet Root CA.cer and SecureNT Intermediate CA.cer one by one, in succession.

  1. Right-click on the file name in Windows Explorer. Click on 'Install Certificate'.
  2. You will see 'Do you want to open this file?'. Click 'Yes.'
  3. You will see 'Certificate'. Click on 'Install Certificate'
  4. You will see 'Welcome to the Certificate Import Wizard'.
  5. Against the Store location select 'Local Machine' and click 'Next'.
  6. You will see 'Do you wish to allow this app to make changes to your device?'. Click 'Yes'.
  7. You will see 'Certificate Import Wizard – Certificate Store'.
  8. Select 'Place all the certificates in the following store'. Click 'Browse'.
  9. You will see 'Select Certificate Store'.
    • For SecureNT Intranet Root CA.cer select 'Trusted Root Certification Authorities'. Click 'Next'. Click 'Finish'.
    • For SecureNT Intermediate CA.cer select 'Intermediate Certification Authorities'. Click 'Next'. Click 'Finish'.
info

If you wish to automatically install them on large number of Windows PCs then you can use Microsoft Group Policy. Here is the link for Installation using Microsoft Group Policy.

Method 2 - Installation of CA Certificates using PFX files

Follow below mentioned steps for the installation of SecureNT Root + Intermediate CA certificate in one go using SecureNT CA-Bundle.pfx, or SecureNT CA-Bundle-PWD.pfx file.

  1. Right-click on the file name in Windows Explorer. Click on 'Install PFX.'
  2. You will see 'Welcome to the Certificate Import Wizard'.
  3. Against the Store location select 'Local Machine' and click 'Next'.
  4. You will see 'File to Import'. Click 'Next'
  5. You will see 'Private key protection'. Type the password. If none, then press 'Enter'.
  6. Select 'Automatically select the certificate store based on the type of the certificate'. Click 'Next'.
  7. Click 'Finish'.

Once installed, you can verify the installation by starting 'Manage User Certificates' in Control Panel > User Accounts. You will see them under 'Certificates' in 'Trusted Root Certification Authorities' and 'Intermediate Certification Authorities'

Installation on
Firefox Browser

Case 1 - Firefox on Windows 10

The above steps (Installation on Windows Clients) are sufficient to install the SecureNT Root and Intermediate certificates for Edge, Chrome and Firefox browsers.

Case 2 - Firefox on Windows 11

We have noticed that the certificate needs to be imported into the Firefox browser. Use Settings > Privacy & Security > Certificates > View Certificates. You will see 'Certificate Manager'. You can use one of the below two methods to import the CA Certificates.

Method 1

Select the 'Your Certificates' tab and click 'Import'. Select SecureNT CA-Bundle.pfx, or SecureNT CA-Bundle-PWD.pfx file. Type password ('inet' or press 'Enter' if password is blank).

Method 2

Select the 'Authorities' Tab. Go to the 'Secure Network Traffic' and Select 'SecureNT Intranet Root CA'. Click 'Edit Trust' Tick 'This certificate can identify websites'. Repeat the same step for 'SecureNT Intranet Intermediate CA'

info

In case, you are unable to import the CA Certificates then enter 'about:config' in the address bar and continue to the list of preferences. Set the preference 'security.enterprise_roots.enabled' to true. Restart Firefox.

Even after import, if you don't see the CA certificate in the Certificate Manager then most probably Anti-virus installed on the PC is not allowing the Firefox browser to access the certificate. Create an exception or rule in the Antivirus so that SecureNT Root CA and Intermediate CA are allowed to be seen.

Check this article for more information - Setting Up Certificate Authorities (CAs) in Firefox

Adding root certificate to
Mac OS X

Follow the steps below -
  1. Double-click the certificate file (with the '.cer' extension). It will start the 'Keychain Access' app.
  2. Under 'Add Certificate' against 'Do you want to add the certificates from the file 'SecureNT Intranet Root CA.cer' to a keychain?' Choose 'System' from the keychain option. Click 'OK'.
  3. A window pops up saying, 'Do you want your computers to trust certificates signed by <root CA> from now on? Click the 'Always Trust' button.
  4. Then you will see under 'Keychain Access' that the certificate is added to the system entry.
  5. Repeat all of the above steps for each Certificate.
info

In case you wish to install the Root Certificates on multiple OS X client Macs or in the Firefox browser read this article.

Adding root certificate to an
Android Device

Case 1 - Android 11+ Device
  1. Open Device settings
  2. Go to 'Security'
  3. Go to 'Encryption & Credentials'
  4. Go to 'Install from storage' or 'Install a certificate' (depending on devices)
  5. Select 'CA Certificate' from the list of types available
  6. Accept a warning alert.
  7. Browse to the certificate file on the device and open it
  8. Confirm the certificate installation
Case 2 - Latest Samsung Device
  1. Go to Settings
  2. Go to Biometrics and security
  3. Go to Other security settings
  4. Select 'Install from device storage'
  5. Select 'CA Certificate'
  6. Select 'Install Anyway'

Download SecureNT CA (Root) Certificates

In case, you require SecureNT CA certificates in DER (binary) format, click on the links below to download them.

SecureNT Intranet Root CA Certificate

SecureNT Intranet Intermediate CA Certificate

SecureNT Intranet CA Certificate Chain Bundle

Root & Intermediate CA Certificates are there in a single .cer file. Downloaded root files are in DER format. In case you require them in PEM (txt) format send mail to support@intranetssl.net

SecureNT Intranet CA Certificate Chain in PFX format

Root & Intermediate CA Certificates are in .pfx file format. There is no Password.

SecureNT Intranet CA Certificate Chain in PFX format with Password

Root & Intermediate CA Certificates in PFX file format. Password is 'inet'.

Copyright © 2024 Secure Network Traffic. All rights reserved. SecureNT is a registered trademark of Secure Network Traffic.