User Tools

Site Tools


Make CA or Certificate trusted

For the time being there is no gui way of trusting a certificate in Chrome on Linux.

To trust a certificate/CA you must do the following:

1. Install certutil

sudo apt-get install libnss3-tools

2. Run certutil

certutil -d sql:$HOME/.pki/nssdb -A -t TC -n "" -i

The certificate is inside the file called “”.

Import script

# usage: [port]
exec 6>&1
exec > $REMHOST
echo | openssl s_client -connect ${REMHOST}:${REMPORT} 2>&1 |sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p'
certutil -d sql:$HOME/.pki/nssdb -A -t TC -n "$REMHOST" -i $REMHOST 
exec 1>&6 6>&-



Script source:

howtos/add_trusted_ca.txt · Last modified: 16/02/2023 06:07 by domingo