ESET Insiders BDeep 7 Posted March 7, 2016 ESET Insiders Share Posted March 7, 2016 Following on the heels of this thread: https://forum.eset.com/topic/7604-eset-endpoint-security-6-ssl-inspection-thunderbird-need-peer-review/?hl=firefox We are deploying EES 6 to computers running Firefox 44.0.2 under Microsoft Windows 7 x86 and x64. Using GPO and MSI Computer Policy, the computers are installing EES at first reboot after GPO is applied (while sitting at CTRL+ALT+DEL screen). EES 6 is installing the ESET root certificate in the TRCA store without issue and no users are logged on. Once the user logs on and launches Firefox, the usual SSL errors begin to appear. Looking in all of the affected Firefox computers, the ESET certificate is not in the Firefox store. I have: Rebooted Run ESET GUI with Firefox closed Run ESET GUI with Firefox opened Redeployed ESET to a small number of the affected computers Nothing seems to get the ESET certificate added to the store. Any options for getting the certificate imported? Link to comment Share on other sites More sharing options...
Administrators Solution Marcos 5,243 Posted March 8, 2016 Administrators Solution Share Posted March 8, 2016 Please continue as follows: - restart the computer (do not launch any applications) - disable SSL/TLS scanning and click OK - enable SSL/TLS scanning and click OK Is the root certificate imported to the Firefox CA certificate store ok? If not, repeat the procedure and now also create a Procmon log from the point when you enable SSL/TLS scanning. When done, compress the log, upload it to a safe location and pm me the download link. Link to comment Share on other sites More sharing options...
ESET Insiders BDeep 7 Posted March 8, 2016 Author ESET Insiders Share Posted March 8, 2016 Please continue as follows: - restart the computer (do not launch any applications) - disable SSL/TLS scanning and click OK - enable SSL/TLS scanning and click OK Is the root certificate imported to the Firefox CA certificate store ok? If not, repeat the procedure and now also create a Procmon log from the point when you enable SSL/TLS scanning. When done, compress the log, upload it to a safe location and pm me the download link. Worked great. Positive results on all Mozilla Firefox browsers. Link to comment Share on other sites More sharing options...
Recommended Posts