You can create a self signed certificate to bypass the "Warning your connection is not secure" browser message.


Here are the steps to make this happen:


STEP 1 - Create the Certificate


1) access to a linux system

2) access to root or sudo

3) OpenSSL version 3.0.x or higher

      - if you do not have 3.0.x you will need to upgrade your OpenSSL version to the current version

4) Create a directory to hold the certs

5) run the below commands:


         FQDN = fully qualified domain name.  For example   mycompany.com


sudo openssl genpkey -out {full FQDN name).key -algorithm RSA -pkeyopt rsa_keygen_bits:4096

sudo openssl req -new -key {full FQDN name) .key -out {full FQDN name).csr -addext "subjectAltName=DNS:{full FQDN name) "

          note: you will need to fill in some information here (country, state, company, etc)  when it asks for the FQDN name, put in the full domain name.



sudo openssl x509 -in {full FQDN name).csr -out {full FQDN name).crt -req -signkey {full FQDN name).key -days 365 -copy_extensions copy


sudo chown {username} *.key

sudo chown {username} *.crt


copy the key and crt file to your pc.



STEP 2 - Upload Certificate to your netLD or ThirdEYE


On netLD or ThirdEye, do the following:


- go to a browser and put in the following:

           https://{netld name or ipaddress}/admin

       -  enter token api...if you do not have then create one.

           - if the token fails, then you will need to go to the vm web console and reset the api tokein  (option 5, then option 4)


- in the admin dashboard, select "Settings" then select "TLS Certificates"

- in the "Public Certificate" section, put your *.crt file

- in the "Private Key" section put your *.key file


- click on upload

   -  if your certificates are good, you will see a success banner.

- now click on Restart to restart the system.







STEP 3 - Upload Certificate to your PC - windows


Now you have the certificate loaded onto the system, lets update your PC.


in windows, right click on the "Start" button (usually a 4 square blue box)...then select "run"

in the popup window, put "certmgr.msc"  and click okay



The below screen will appear



Click on the "certificates" below Personal, then click on "Action" at top of box, select "all tasks" then click on import.  Import your *.crt file.  let the other options default


Now click on the certificates below "Trusted Root Certificate"..then click on "Action", and select all tasks...then import.  Import your *.crt file.  Use all the default options.


Open your browser, clear all cache and cookies, and using the FQDN (ex:  mycompany.com) go to your netLD or ThirdEye system.  The warning banner should now be gone.