Hello,
I would like to use a self-signed certificate to secure our moodle site but I don't want browsers display an alert message (see image below), is there a way to not display this message ?
Thank you
I'd say in general ... no ... and probably not a good idea to find a way to circumvent that on users/students/teachers browsers unless you desire to take on that level of user support.
Having said that, however, check out if you could use https://letsencrypt.org/
'spirit of sharing', Ken
using letsencrypt will also encourage you to automate the renewal process (which is a very good thing to do.)
The only way is to not use a self signed certificate! Have you seen letsencrypt.org - that will let you get a real cert for free!
Oh, yeah ... one more thing should you decide to use ... Moodle has a variable for wwwroot ... http://yourcurrentsite/ ... if you get a cert (know this happens with true CA certs) one will have to search and replace all instanced in the DB for http://yourcurrentsite/ and replace with https://yourcurrentsite/ as well as changing the wwwroot variable in config.php of all moodle instances you might be running on your server (thinking either virtual apaches or Moodles in subdirectories) or your images/internal links get broken.
If folks have been used to access your site(s) via http (and have bookmarked or favorited) ... you'll need to make a decision about having your apache server forward all http request to https OR, even if you've made appropriate changes to config.php, apache, and the DB search and replace, a user using http:// will hit a Moodle screen that tells them they can only use https. That screen doesn't have a 'click here' link to go to https://yoursite/ and you'll have to add that in the language customizations for that screen.
'spirit of sharing', Ken
The browser will always send you an error if you used a self-sign certificate as your self-signed certificates intermediate and roots are not recognized. If you want to get rid of it then you must purchase a self-signed certificate from the Private CA and then install the intermediate and root on the client browsers. I found an article related to the self-signed certificate, here is the link
https://www.https.in/ssl-security/vulnerable-side-self-signed-certificates/