• Community
    • Community
    • Vivaldi Social
    • Blogs
  • Forum
    • Vivaldi Forum
    • Categories
    • Recent
    • Popular
  • Themes
    • Vivaldi Themes
    • My Themes
    • FAQ
  • Contribute
    • Contribute
    • Volunteer
    • Donate
  • Browser
    • Vivaldi Browser
    • Latest News
    • Snapshots
    • Help
Register Login

Vivaldi

  • Community
  • Themes
  • Contribute
  • Browser

Navigation

    • Home
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    1. Home
    2. Desktop
    3. Archive
    4. Installing client certificates

    Installing client certificates

    Scheduled Pinned Locked Moved Archive
    resolvedsslpki
    13 Posts 4 Posters 10.5k Views 4 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • coreymwamba
      C
      coreymwamba
      last edited by A Former User

      I thought this would be already in Vivaldi; but can we have the ability to import client certificates please? Only reason why I've had to re-install Opera 12.

      1 Reply Last reply Reply Quote 0
    • coreymwamba
      C
      coreymwamba
      last edited by

      Linux - am I right to infer that this already works in other operating systems? I'm using version 1.0.291.18 (Developer Build) dev (64-bit)

      1 Reply Last reply Reply Quote 0
    • coreymwamba
      C
      coreymwamba
      last edited by

      Just to report that I still cannot install my certificate with snapshot 1.0.303.22. Is it a command-line switch?

      UbIx
      U
      1 Reply Last reply
      Reply Quote 0
    • UbIx
      U
      UbIx @coreymwamba
      last edited by

      @coreymwamba

      Meanwhile solved this topic?

      I downloaded the boxcert.cer file from the FritzBox. Then I open the settings in the locker icon before the address line and select HTTPS/SSL certificate management. Select first tab - your certifcats - click install - select the boxcert.cer from FritzBox - OK

      => certifcat installation error
      "Der private Schlüssel für dieses Clientzertifikat fehlt oder ist ungültig."
      (free translated : the private key for this client certificate is missing or invalid)

      cat boxcert.cer
      -----BEGIN CERTIFICATE-----
      ... the key ...
      -----END CERTIFICATE-----

      ???

      coreymwamba
      C
      1 Reply Last reply
      Reply Quote 0
    • coreymwamba
      C
      coreymwamba @UbIx
      last edited by

      @UbIx you need to use a file that has both private and public certificates - I don't know what FritzBox is though, sorry.

      luetage
      L
      UbIx
      U
      2 Replies Last reply
      Reply Quote 0
    • luetage
      L
      luetage Supporters Soprano @coreymwamba
      last edited by

      @coreymwamba Fritzbox is a router.

      github ◊ vfm

      1 Reply Last reply Reply Quote 0
    • UbIx
      U
      UbIx @coreymwamba
      last edited by

      @coreymwamba said in Installing client certificates:

      @UbIx you need to use a file that has both private and public certificates -

      This can't be the case - in this case you have big security hole! The private key - shouldn't be stored on an insecure place like a lokal PC!!! Normally the public key and the fingerprint are able to verify if the correct server was connected!!! See Wikipedia description (there are better descriptions available - but I've only the German version stored - so this is the only one which I can find fast).

      I don't know what FritzBox is though, sorry.

      About FritzBox - this is the most popular router in Germany.

      1 Reply Last reply Reply Quote 0
    • UbIx
      U
      UbIx
      last edited by

      @Gwen-Dragon said in Installing client certificates:

      @UbIx You are talking about the SSL server certificate (=to secure SSL) or a single client (=user authentication) certificate?

      As is know for client cert the client key and cert have to be packed into a pkcs12 file on the local PC.

      I don't know. If I look in the Help (chapter certificate) that's for me not clear.

      1 Reply Last reply Reply Quote 0
    • UbIx
      U
      UbIx
      last edited by UbIx

      @Gwen-Dragon said in Installing client certificates:

      @UbIx A client certificate is a special certificate to authenticate a user, not a server.
      Sorry for you, but your answers are wrong under these circumstances and that issue with Fritzbox does not belong to the thread here!

      ???

      Thread titel "Installing client certificates" looks for me correct.

      1 Reply Last reply Reply Quote 0
    • UbIx
      U
      UbIx
      last edited by

      @Gwen-Dragon said in Installing client certificates:

      @UbIx Your OS is right, a client certificate for user authentication needs the private key and cert key.

      Now I'm totally confused. I don't know if my English is not good enough to understand it or if I'm to stupid 😞

      Back to start:

      1. I've the FritzBox router which use self signed keys - like many private network devices and servers to.
      2. If I open the login page "https://myrouter" with Firefox:
        2.1 The opened window shows a cert error and it is possible to open an additional dialog
        2.2 This dialog allows me to download the key and verify it (in this case with an sha1 finger print)
        2.3 After this, in the future the locker isn't red and open anymore - it is yellow and the locker sign is closed 🙂
      3. If I open the login page "https://myrouter" with Vivaldi:
        3.1 The opened window shows a similar cert error but in the extended settings - it is only possible to accept the certificate (without fingerprint check) one time or allways
        3.2 After acceptance => the looker symbol is still read and open - no deviation to an insecure page 😞

      If I open the HTTPS/SSL certificate management - the error in the first posting was shown.

      My OS is openSUSE Tumbleweed Kernel: 4.10.13-1-default Linux

      So my question are:

      1. Is this the correct thread?
      2. What is the right way - to install an user public key certificate?
        😕
      1 Reply Last reply Reply Quote 0
    • coreymwamba
      C
      coreymwamba
      last edited by

      @Gwen-Dragon yes, this is no longer a problem for me, and on my newer laptop I think I used Vivaldi's UI to do this.

      1 Reply Last reply Reply Quote 0
    • UbIx
      U
      UbIx
      last edited by

      @Gwen-Dragon

      OK, many thanks for your time.

      I will check the shared links from you.

      Nice weekend - Ulf

      1 Reply Last reply Reply Quote 0
    • UbIx
      U
      UbIx
      last edited by UbIx

      @Gwen-Dragon

      I installed like described the nss-tools from openSUSE tumbleweed repository via:

      sudo zypper in mozilla-nss-tools

      Afterwords I installed the certificate, downloaded from FritzBox router:

      certutil -d sql:$HOME/.pki/nssdb -A -t "P,," -n fritz.box -i ~/Downloads/boxcert.crt

      And the verification shows me, that it was well installed:

      certutil -d sql:$HOME/.pki/nssdb -L

      I think now someone else can do it easier 😉

      Update - after an restart, vivaldi shows a green locker symbol.

      1 Reply Last reply Reply Quote 0
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    • 1 / 1
    • First post
      Last post

    Copyright © Vivaldi Technologies™ — All rights reserved. Privacy Policy | Code of conduct | Terms of use | Vivaldi Status