CSAIL Web Certificates
CSAIL Web Certificates allow your browser to prove your identity to secure CSAIL websites. They expire a year after you obtain them, or earlier if your account expires earlier. You must have an active CSAIL account before you can obtain certificates.
Just as CSAIL accounts are distinct from MIT/Athena accounts, CSAIL certificates are distinct from MIT certificates
Please follow directions for your browser, if it is listed below:
Only if your browser does not appear above,
you may try these generic directions:
- Install our authority certificate, master.cer
- This "Master CA" lets your browser recognize and trust secure CSAIL websites.
- Request a CSAIL client certificate for your browser
- Back up your certificate (optional)
- If you expect to encrypt or sign mail and documents with your certificate, you may wish to export it and store it somewhere safe.
You can visit https://inquir.csail.mit.edu/cgi-bin/check-certificate
to check the client certificate your browser is presenting to CSAIL Web servers. If your certificate is valid, this page will display information about it.
ssl_error_expired_cert_alert or other "your certificate has expired" errors
- Obtain new certificates (see above). It may be necessary to delete personal certificates, or to restart your browser, before they will function properly.
For other known issues, see browser-specific pages (at top).
Verifying the validity of the authority certificates
There is a printed copy of the Master CA certificate available for your inspection at the TIG Help Desk (32-276). For convenience, the certificate checksums are also given below (but you should not trust this server any more than another):