Run these command
ln -s /usr/share/zoneinfo/Asia/Bangkok /etc/localtime
Saturday, December 24, 2011
Sunday, December 11, 2011
Why does the Green Bar not appear for Google Chrome?
Problem
When accessing a secure site with a Extended Validation (EV) SSL certificate, the green bar and the company name does not display to the right of the lock icon in the Google Chrome address bar.
Resolution
- Click the Tools menu
- Select Options
- Click the Under the Hood tab
- Select the "Check for server certificate revocation" checkbox
- Click Close
If the green bar or the organization's name is still not displayed, it may be due to one of the following conditions:
- The website might not use an EV-SSL certificate. EV certificates provide extra assurance as to the identity of the website, but not all websites using SSL use EV-SSL certificates.
- The website might contain security errors, such as mixed content or expired certificates.
When accessing a secure site with a Extended Validation (EV) SSL certificate, the green bar and the company name does not display to the right of the lock icon in the Google Chrome address bar.
Resolution
- Click the Tools menu
- Select Options
- Click the Under the Hood tab
- Select the "Check for server certificate revocation" checkbox
- Click Close
If the green bar or the organization's name is still not displayed, it may be due to one of the following conditions:
- The website might not use an EV-SSL certificate. EV certificates provide extra assurance as to the identity of the website, but not all websites using SSL use EV-SSL certificates.
- The website might contain security errors, such as mixed content or expired certificates.
Firefox does not display green address bar when visiting a web site with Extended Validation certificate
Problem
When accessing a web site with an Extended Validation certificate, you may experience the following behavior:
Green bar does not appear for Firefox users
Cause
Currently, Extended Validation certificates are natively supported by Internet Explorer 7, Firefox 3.x+, Opera 9 and Safari 3.2+.
Resolution
To resolve this problem, ensure Online Certificate Status Protocol (OCSP) is enabled.
- Open Firefox browser
- From the tool bar, click Tools > Options > Advanced > Encryption tab > Validation
- Ensure Use OCSP to validate only certificates that specify an OCSP service URL is checked
When accessing a web site with an Extended Validation certificate, you may experience the following behavior:
Green bar does not appear for Firefox users
Cause
Currently, Extended Validation certificates are natively supported by Internet Explorer 7, Firefox 3.x+, Opera 9 and Safari 3.2+.
Resolution
To resolve this problem, ensure Online Certificate Status Protocol (OCSP) is enabled.
- Open Firefox browser
- From the tool bar, click Tools > Options > Advanced > Encryption tab > Validation
- Ensure Use OCSP to validate only certificates that specify an OCSP service URL is checked
Green address bar does not appear with Microsoft Internet Explorer
Problem
When accessing a website securely with Extended Validation SSL Certificate, you may experience the following behavior:
The green address bar does not appear.
This issue occurs when one of the following conditions are true:
- The Phishing Filter built into Internet Explorer 7 is not enabled
- Smart Screen Filter built into Internet Explorer 8/9 is not enabled
- Any certificate related error message prior to accessing the secure site will prevent the Green Bar from being displayed when connecting to a secure web site with an Extended Validation SSL certificate installed
- The Root CA Certificate does not exist on the computer
- The Intermediate Certificate Authority (CA) certificates are not installed on the Web server
- Non secure content displayed on the web page
Resolution
Method 1: Enable Phishing Filter/Smart Screen Filter on Internet Explorer
To resolve this problem for Internet Explorer 7, perform the following steps:
1. Open Internet Explorer 7
2. Click Tools > Phishing Filter > Turn Off/On Automatic Website checking
3. Ensure Turn on automatic Phishing Filter (recommended) is selected
4. Click OK
If web site is access through the Local Intranet zone, the phishing filter is turned off by default. To enable:
1. Open Internet Explorer 7
2. Click Tools > Internet Options > Security
3. Select Local intranet zone
4. Click Custom level
5. Under Miscellaneous, ensure Use Phishing Filter is enabled for all zones
To resolve this problem for Internet Explorer 8/9, perform the following steps:
1. Open Internet Explorer 8
2. From the top menu, click Tools > Internet Options
3. Click Advanced tab
4. Under Security, check the box Enable SmartScreen Filter
5. Click Apply > OK
If the problem persists, determine which security zone is used when accessing the website.
1. After accessing the website, in the lower right hand corner, confirm the zone: Internet, Intranet, or Trusted Site
2. From the top menu, click Tools > Internet Options > Security tab
3. Select the appropriate zone from step 1
4. Click Custom Level
5. Under Miscellaneous > Use SmartScreen Filter, click Enable
6. Click OK
Method 2: Check for possible certificate errors
The security certificate presented by this web site was not issued by a trusted certificate authority
Note: If the Root CA is not uploaded to the Windows XP machine via Windows Update, the chain of trust will not be complete and the certificate will not be trusted
The security certificate presented by this web site has expired or is not yet valid
The security certificate presented by this web site was issued for a different web site's address
Non secure content displayed on the web page. Typically these are images or scripts that reside on a server that is not secured. Links to this type of content must contain 'https'
If any of theses alerts are presented by Internet Explorer, the Green Bar will not display.
Method 3: Enable the Check for Server Certificate Revocation
- Start an Internet Explorer 7 browser session
- Go to Tools > Internet Options
- Click on the Advanced tab
- Under the Security section, check the box next to Check for server certificate revocation
- Click Apply > OK
Method 4: Ensure Update Root Certificate component is enabled
1. Click Start > Control Panel > Add or Remove Programs > Add/Remove Windows Components
2. Ensure Update Root Certificates is checked
You can download Update for Root Certificate from Microsoft.
Note: This will not take effect until after you restart Internet Explorer
The EV OID must be activated on behalf of Microsoft for the Green Bar to appear. Tentatively this is set to occur On January 31, 2007.
When accessing a website securely with Extended Validation SSL Certificate, you may experience the following behavior:
The green address bar does not appear.
Cause
This issue occurs when one of the following conditions are true:
- The Phishing Filter built into Internet Explorer 7 is not enabled
- Smart Screen Filter built into Internet Explorer 8/9 is not enabled
- Any certificate related error message prior to accessing the secure site will prevent the Green Bar from being displayed when connecting to a secure web site with an Extended Validation SSL certificate installed
- The Root CA Certificate does not exist on the computer
- The Intermediate Certificate Authority (CA) certificates are not installed on the Web server
- Non secure content displayed on the web page
Resolution
Method 1: Enable Phishing Filter/Smart Screen Filter on Internet Explorer
To resolve this problem for Internet Explorer 7, perform the following steps:
1. Open Internet Explorer 7
2. Click Tools > Phishing Filter > Turn Off/On Automatic Website checking
3. Ensure Turn on automatic Phishing Filter (recommended) is selected
4. Click OK
If web site is access through the Local Intranet zone, the phishing filter is turned off by default. To enable:
1. Open Internet Explorer 7
2. Click Tools > Internet Options > Security
3. Select Local intranet zone
4. Click Custom level
5. Under Miscellaneous, ensure Use Phishing Filter is enabled for all zones
To resolve this problem for Internet Explorer 8/9, perform the following steps:
1. Open Internet Explorer 8
2. From the top menu, click Tools > Internet Options
3. Click Advanced tab
4. Under Security, check the box Enable SmartScreen Filter
5. Click Apply > OK
If the problem persists, determine which security zone is used when accessing the website.
1. After accessing the website, in the lower right hand corner, confirm the zone: Internet, Intranet, or Trusted Site
2. From the top menu, click Tools > Internet Options > Security tab
3. Select the appropriate zone from step 1
4. Click Custom Level
5. Under Miscellaneous > Use SmartScreen Filter, click Enable
6. Click OK
Method 2: Check for possible certificate errors
The security certificate presented by this web site was not issued by a trusted certificate authority
Note: If the Root CA is not uploaded to the Windows XP machine via Windows Update, the chain of trust will not be complete and the certificate will not be trusted
The security certificate presented by this web site has expired or is not yet valid
The security certificate presented by this web site was issued for a different web site's address
Non secure content displayed on the web page. Typically these are images or scripts that reside on a server that is not secured. Links to this type of content must contain 'https'
If any of theses alerts are presented by Internet Explorer, the Green Bar will not display.
Method 3: Enable the Check for Server Certificate Revocation
- Start an Internet Explorer 7 browser session
- Go to Tools > Internet Options
- Click on the Advanced tab
- Under the Security section, check the box next to Check for server certificate revocation
- Click Apply > OK
Method 4: Ensure Update Root Certificate component is enabled
1. Click Start > Control Panel > Add or Remove Programs > Add/Remove Windows Components
2. Ensure Update Root Certificates is checked
You can download Update for Root Certificate from Microsoft.
Note: This will not take effect until after you restart Internet Explorer
The EV OID must be activated on behalf of Microsoft for the Green Bar to appear. Tentatively this is set to occur On January 31, 2007.
Subscribe to:
Posts (Atom)