CSMASTER

We received a new SSL Cert for both Csmaster and CS1 if you visit a SSL encrypted page (https) on those servers you will receive an error in both Internet Explorer and Firefox, Chrome and Safari.

Options: You can either not trust our certificate and not enter in any personal information, or try to verify our certificate by installing the root CA certificate from Ipsca. 

IE Fix: Visit http://certs.ipsca.com/Support/hierarchy-ipsca.asp at the bottom of the page there is 2 certificate files, ipsCA global root, and ipsCA Level 1 CA. Download both files (remember where you save them), then simply double the ipsCA Global root file (you may be presented with a security warning and click open to continue). This will bring up a certificate window simply click Install Certificate, this will bring up the certificate import wizard. Click next to continue, leave the the default setting for the certificate store and click next, then finish. Once that file is imported successfully simply do the same for the ipsCA level 1 file. You then can start Internet Explorer and now visit the servers with no problems.

IE UPDATE: IE has updated their root trusts you should no longer receive an error using IE. If you do please contact This e-mail address is being protected from spambots. You need JavaScript enabled to view it.

Firefox: Please download the files as stated above in the IE Fix. Open Firefox Tools -> Options, Click on advanced at the top, then encryption tab, view certificates, click on the authorities tab then import ipsCAGlobal,click the check box for all 3 trusts and then repeat for the ipsCA level 1 certificate.

FIREFOX UPDATE: Firefox still has not trusted ipSca's new certificates a slick add on for Firefox is perspectives use Firefox's add-ons from the tools menu to find it. This works on the assumption that an attacker will only be able to attack a Website for a short period of time (less than a day) so it compares the SSL thumbprint to some notary servers and if it matches it overrides Firefox's security warning. (You can get perspectives from 

http://www.networknotary.org/firefox.html a free download)

Why this happened (for the techies only): If you are familiar with how SSL certificates are issued this will make sense. Our root Certificate Authority (CA) IpsCA's main certificate expired on 12/19/2009 so any certificates they signed become invalid (which ours did) so they created a new signing certificate and re issued us (CS Department) new certificates. The problem is their root certificate has not gone through the proper channels to be updated to your computer. Windows comes with a list of Root CA's to trust and IpsCA's old certificate was built in, but windows has not updated yet and given you the new Root certificate (which if you applied the fix above for IE you have imported it into your system already) eventually windows will update and trust IpsCA again and same with Firefox, but until they do you will receive errors because your machine can't verify with IpsCA that the certificate is good.