You can generate self signed certificates but they will be signed by your own certificate authority not by one that's already known by the browser certificate bundle. That means it will show u... [by TrevorH]
on 09/15/2013 – Made popular on 09/15/2013
I am root administrators.I have few account cannot failed in audit scanning.
These accounts having same two affected nodes.
Obtain a new TLS/SSL server certificate that is NOT self-signed and install it on the server. The exact instructions for obtaining a new certificate depend on your organization's requirements.
I am configuring Apache to use client certificate authentication. When I brows to the site however, it does not ask me for a certificate, unless SSLCACertificateFile is specified. It will then ask for a certificate through the browser. The browser will pop up a box asking me to choose a certificate (it only shows certificates signed by the CA specified by SSLCACertificateFile).