MozillaZine

How to clear ssl cache

User Help for Mozilla Firefox
snacktime
 
Posts: 3
Joined: September 25th, 2006, 10:39 pm

Post Posted September 25th, 2006, 10:44 pm

We use ssl client certificates extensively in our company, and it's a huge pain to have to close down your browser every time you need to use a different certificate, which our support staff has to do on a regular basis. Is there a way to clear the ssl cache and force firefox to prompt for the certificate? IE has this option btw.

I'd also like to register my dislike of how ssl certificates get installled. No message, nothing, it just silently installs, leaving end users often confused when installing a certificate.

And while we are at it, why not a way to specify the key size when using KEYGEN instead of always letting the user decide?

alteredcarbon167

User avatar
 
Posts: 250
Joined: March 28th, 2006, 11:08 am
Location: Golden State

Post Posted September 25th, 2006, 10:52 pm

<A HREF="http://straylink.wordpress.com/2006/08/31/firefox-doesnt-cache-ssl-requests-between-restarts/">Firefox doesn't cache SSL requests.</A>

snacktime
 
Posts: 3
Joined: September 25th, 2006, 10:39 pm

Post Posted September 25th, 2006, 11:32 pm

Maybe ssl cache isn't the right term, but anyone that has used ssl client certificates to any extent knows what I'm talking about. The first time you visit a server that requires a client cert, firefox determines which certificates are accepted by the server and prompts you to choose one of them. On subsequent requests it caches your choice, and there is no way to clear that cache without closing the browser. In IE clearing the ssl state clears the client certificate cache (among other things).

Normall this isn't an issue, but our servers match on certain data in the certificate subject as part of the authentication process. That being the case, if you want to login as a different user, you have to restart firefox before it will let you hand the server a different certificate.

dickvl

User avatar
 
Posts: 51514
Joined: July 18th, 2005, 3:25 am

Post Posted September 26th, 2006, 4:26 pm

Try this: Tools > Clear Private Data and only put a checkmark before Authenticated Sessions -> Clear Now

Unarmed
 
Posts: 4941
Joined: July 31st, 2003, 1:26 pm

Post Posted September 26th, 2006, 4:36 pm

Tools → Options → Advanced → View Certificates → Select the certs in question & hit Delete

snacktime
 
Posts: 3
Joined: September 25th, 2006, 10:39 pm

Post Posted September 26th, 2006, 5:23 pm

dickvl wrote:Try this: Tools > Clear Private Data and only put a checkmark before Authenticated Sessions -> Clear Now


That worked, thanks! I thought I had tried that before, but guess not.

dickvl

User avatar
 
Posts: 51514
Joined: July 18th, 2005, 3:25 am

Post Posted September 26th, 2006, 6:13 pm

You're welcome

Be careful as it will also log you out (e.g. this forum).

Return to Firefox Support


Who is online

Users browsing this forum: No registered users and 25 guests