How to block security alert dialog box when using SSL

[Guest]

when accessing the URL using Https,the security alert box pop up everytime.
how to block that security alert box showing
1.Certificate issued by a company you have not choosen to trust.view the
certificate to determine whether you want to trust the certificate authority.
2. the security date is valid.
3.the security certificate has a valid name matching the name of the page
yuo are trying to view.
do you want to proceed.
Although i used the certificate which is issued by the valid authority

 

[John Rivers]

Hi,

It looks like you are missing the certificate authority's root
certificate on your client.

Windows ships with a set of trusted root certificates.

Often newer/cheaper certificate authorities aren't on the list.

Because of this very problem they are cheaper than established
companies.

That is why you must only purchase certificates from companies
who have had their certificates installed on windows by default for
at least X years.

To solve the problem on your machine (not everybody elses)
you need to obtain the certificate authority's certificate associated
with your server certificate and install it in your browser.

You can offer the certificate to members of the public
by linking to a copy of it on your web server and letting
them install it.

This can be automated by using an image url, refresh http header etc.

Now you can see the weak spot in SSL security.

I can offer invalid root certificates to the whole world, most people
will accept them because they don't know better!

 

[Guest]

still i want clear reply.
first i will tell you how i installed the certificate in IIS.I got the steps
from msdn
1.Create the certificate request from IIS
2.Sumitted the certificate in Microsoft certificate services and obtained
the certificate
3.Install the certificate in the webserver
4.configured and tested the site using HTTPS.
Is the certificate generated by the above steps is not valid?
if valid i should not recieve the message ,if not valid how can i get the
valid certifcate

 

[John Rivers]

Hello,

it sounds like your server certificate is ok.

where i think your problem lies is with the trusted root certificates
installed on your client machine.

you can check these by looking in internet explorer menu: tools /
internet options / content tab / certificates button

then look in trusted root or intermediate certificate authorities

the company you bought your server certificate from should be listed
in there, if not you bought a bad one.

who did you buy the certificate from?

 

[Guest]

i obtained the certificate from Microsoft certificate Servies .
i dont understand the question who did you buy the certificate from?
what is the name of the company that should in intermediate certificate
services

 

[Damien]

i obtained the certificate from Microsoft certificate Servies .
i dont understand the question who did you buy the certificate from?
what is the name of the company that should in intermediate certificate
services

You've installed the Certificate Services on a Windows Server right? So
you are now acting as your own Certificate Authority.

But your web browser does not know about this Certificate Authority -
so you need to follow the steps that John was explaining about getting
the CA certificate installed on your browser.

If you're in a corporate setting and this is for an Intranet site, your
IT people may be able to add the CA certificate to all machines within
the enterprise using Active Directory.

If you're creating an Internet facing service, you'll probably need to
buy a certificate from a well know Certification Authority before you
go live.

Damien