Use a trusted certificate

While self-signed certificates provide good security, the following warnings are still displayed when users access HTTPS sites using a fully-qualified domain name:

  • Domain mismatch
  • The security certificate presented by this website was not issued by a trusted certificate authority

These warnings are eliminated by using any one of the following types of trusted certificates:

  • certificates signed by a commercial certificate authority (CA) that is recognized by all popular web browsers. A complete list is in Windows under Control Panel > Internet Options > Content > Certificates > Trusted Root Certification Authorities.
  • certificates created by an organization that operates its own certificate authority that is recognized by their users' web browsers by way of a root certificate that is installed into all users' web browsers.

PaperCut NG/MF allows you to:


This is a technically complex area and there is an assumed level of experience with SSL certificates in general.


Share your findings and experience with other PaperCut users. Feel free to add comments and suggestions about this Knowledge Base article. Please don't use this for support requests.