Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Caută ajutor

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Află mai multe

Acest fir de discuție a fost arhivat. Adresează o întrebare nouă dacă ai nevoie de ajutor.

How can I force re-prompting for client certificates?

  • 2 răspunsuri
  • 1 are această problemă
  • 17 vizualizări
  • Ultimul răspuns de dev0

more options

I am testing authentication with client certificates (self-made CA and certs/keys). Everything works correctly. However, if I do not choose the right certificate in the first try, or add client certificates after trying the secure website (and not getting access), I am not re-prompted with choosing client certificates, I get access denied. The only solution I have found so far is `refresh` firefox. Then I have to add my own certs again, which is somewhat tedious, but then I am asked again for client certs and it works. Is there a way to make Firefox "forget" that it got denied the previous time? Or force rep-prompting?

I am testing authentication with client certificates (self-made CA and certs/keys). Everything works correctly. However, if I do not choose the right certificate in the first try, or add client certificates after trying the secure website (and not getting access), I am not re-prompted with choosing client certificates, I get access denied. The only solution I have found so far is `refresh` firefox. Then I have to add my own certs again, which is somewhat tedious, but then I am asked again for client certs and it works. Is there a way to make Firefox "forget" that it got denied the previous time? Or force rep-prompting?

Toate răspunsurile (2)

more options

Did you look at the certificate options in firefox and see if making changes there?

more options

Changing things there on't help. E.g. if I try the web-page without client ssl cert, I get access denied. Then I import my cert, and still get denied.