I feel like repetition in here: built-in browser in PR1.2 works with any certificate that you want if you use acmcli to add CA's (always used commandline, but UI should work too).

For UI to work, you should place the wanted root CA.pem files in /home/user directory and when you select security->certificates->"add new certificate" it should show a list of pem files in /home/user and let you install wanted certs, and then you can choose if if you want that to work with websites/wlan/mail/software.

I just added my self-signed https pages to be fully trusted on my device. And now browser is not warning about untrusted cert anymore, and everything works smoothly.

I don't know how external firefox application handles certs, as I haven't used that application myself.

You should not put your hopes in possible PR releases, as feature freeze for new functionality was already long time ago. But certification UI should work, most people just don't know that the path for imported .pem files is /home/user.

PS. for example for startssl.com certificates to start to work you do: # apt-get install wget; cd /home/user; wget http://www.startssl.com/certs/sub.class1.server.ca.pem; # And then install it from the UI

@rainisto
Check post #2 - it is not finding and installing via GUI the certificate that brings issues. It is that after that this certificate is not used by browser. I can see the certificate package being present in the system by selecting Show>User certificates.
I have trouble with default browser on many web-sites that require secure connection, e.g forum.meego.com.

EDIT: I made mistake - in PR1.2 forum.meego.com can be logged in. My apologies.

please give https url which is not working and the .pem file that you tried to install, so I can try out?

@rainisto
I really appreciate you help here! But all certificates and https urls are my private bank or work, and thus are confidential.
The exact same certificates work as supposed in Mozzila on my Ubuntu and Mandriva lap-tops.
With my online banking I get "untrusted certificate" warning, I proceed and I can log on successfully to my account, but my client certificate is not used and thus I can not perform any banking, only monitor. And there is no way making my browser use the client cert installed in system.
On my work secure url's there is just "Can't open page" notice.

sorry, without examples reachable from internet, I cannot help any further.

Does anyone else have example https sites (hopefully with corresponding .pem file) that they are having problems with?

@rainisto
Just checked using acmcli - all private domains on my N9 are empty. I can not find certs I have installed using GUI. Do you think it will be good idea to try install them using CLI?

I want to try installing my online banking .p12 cert package usin acmcli. As I get it is Do I have to specify domain? And if yes where this certs must go?