• FAQ

• česky | deutsch | english | français | italiano | nederlands | 中文|| English home page

Frequently Asked Questions (FAQ)

CAcert: what, why, how

• CAcert - About us

• How CAcert works from the user's point of view

• CAcert In Short

• Services provided

• You and CAcert

• What does all this make sense?

• Common questions

• More about CAcert

• How can YOU help CAcert?

Account

• Problems and Questions about the CAcert Registration Process

• How To Enter Names In Join Form (create an account)

• How to manage the Certificate Login

• How can I recover my lost Password or Account Name?

• How To Terminate and How can I remove my CAcert Account?

• How can I generate a safe password?

• How To Change Your Name in your account

• How To Change Your Date of Birth in your account

• How to add a new Email address to your account

• Your username is always your default email address

Arbitration, Audit, Policies

• Member's FAQ on Arbitration

• Arbitration Forum

• Internal Audit

• Policies & FAQ on Policies

• Understanding the User Privacy Policy valid in EU & EEA

Assurance

• Assurance Introduction and Assurance Program

• Assurance Details: How can I get CAcert Assurance Points (APs) ?

• Assurer Training Events

• Risks, Liabilities, Obligations and R/L/O Details

• Assurance Handbook (Individuals)

• Organisation Assurance Manual

• Assurer Challenge Test

• I seem to have lost my Assurer status

• How many points do I need to do ... (Privileges)

• Assurance by CAP (Individual Assurance)

• Assurance Information For CAP

• Assurance Prefilled Forms

• New TTP-assisted-assurance program

  • (obsolete: Assurance by TTP-assisted-assurance, Assurance Information For TTP, and TTP Availability)

• Assuring People

• Assurance with Password Recovery

• Assuring Organisations

• Admin Left the Company (Org Assurance)

• Thawte points to be revoked - New points counting (Thawte patch)

Certificates

• Certificates overview

• Suggested Key Sizes for the future

• Weak Keys System check

• Certification Practise Statement (CPS)

• Types of certificate validation

• How to import and trust CAcert root certificates

• Certificate icons used by Windows and file suffixes

• Domain Owner

• How The Ping Test Works

• Certificate chain and its construction algorithm checking whether it is trusted

• CAcert Roots - contents and structure

• New and archive (obsoleted) CAcert Roots - also contains files CAcert-chain, cacert-bundle, and CAcert_Root_Certificates

• Add a new e-mail address to my cacart account in the web interface

• What is a CSR ? and Generating a Certificate Request

• Where can I find out more info about Class 3 and chained certificates ? see FAQ/TechnicalQuestions

• New Class1 Root and New Class3 subroot certificates re-signed FAQ

• Client Certificates

• Suitable browsers for Android system on portable devices

• Client Certificates and Single Sign-On (SSO)

• PDF document signing and time-stamping in Adobe Reader

• Email Certificates and e-Mail Clients Overview

• Server Certificates

• Code Signing Certificates

• Document signing certificates (status at 20180101):

  • You can sign MS Word (DOC[X]) and OpenOffice (ODT) documents only with the code signing enabled client certificate.

  • You can sign Adobe Reader (PDF) and LibreOffice (ODT) documents with any client certificate.

• Getting your PGP key signed by CAcert

• Cryptographic hardware Help and Howtos

• TLS/SSL scanners

• Task force looking into Domain Controller requirements

Certificate related problems

• A browser cannot create a client certificate. please use CAcert web application

• How a Newbie gets his/her first own Client Certificate

• My program provides certificate requests (CSRs) in the .p10 format. How can I submit them to CAcert's web?

• How the heck can I get my new client certificate using Windows ? - Browsers do not work ? Follow articles about using XCA, MMC, cert renewal, and more

• Problem with receiving PING email

  • You are continually receiving an error message:
    • Email Address given was invalid, or a test connection couldn't be made to your server, or the server rejected the email address as invalid

  • How the Ping Test Works

  • Add a New Email Address

  • The 1st wiki note "Small branch from the topic" in this article.

• I cannot create or renew my certificate, because it hangs

• Firefox reports an expired certificate even though you installed a renewed one or a new one

• Why browsers report the CAcert.org website as improperly configured

• Mozilla Firefox is blocking CAcert.org websites – how to get access again

• Firefox v.7x: SSL_ERROR_UNKNOWN_CA_ALERT error when trying to visit CAcert.org

• I cannot import a .p12 file, exported by Firefox, into Windows

• Browsers report untrusted CAcert root certificate due to an old signing algorithm

  • Examples:

    • Firefox error:Your connection is not secure; Advanced: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED

    • Google Chrome error: The site's security certificate is not trusted!

  • Replace the old roots with the new ones, which are published on the CAcert web, or on this page - search for SHA256!

• I cannot renew my certificate - How to renew an expired certificate for Windows using Linux, and how to do it using Firefox (Problem #3)

• You don't have a Domain name but still want a Server Cert?

• Missing Private Key

Others

• Donations Guideline

• Merchandising

• Looking for an official and an unofficial Assurer Logos

• Getting Support and Help!

• BOINC

• Risk

• Significant Technical Standards for CAcert.org

• Unicode for CAcert

  • Unicode UTF-8 example-test

• Tutorials and Support & Documents

• Translations

• Decision Numbers (e.g. what m20070825.3 means)

• CAcert servers' IPv6 support (at the date 20160418)

• Glossary & Abbreviations (1), Glossary & Abbreviations (2), and Glossary & Abbreviations (Validation)

• CategoryFAQ