How To Install CHT's Forum Server Certificate

Using the HNDBRWCL.EXE - CHT Forum Support Client - on port 443 should not be a hassle for you. In fact you shouldn't even have to be aware that you're now partaking in a fully, SSL encrypted interaction with our forum server.

Our port 443 encryption proxy sends a server certificate which has been self-created by us to identify us unambiguously, to your computer. We use this type of certificate because it costs us nothing while it is every bit as capable as any $200.00 per annum server certificate, to encrypt communications between you and us.

To dispense with the warning and challenge that you will get with one of these self-created server certificates, you can, once only, install our server's certificate to your "Trusted Root" certificate store. Here's what that certificate looks like once it's installed:


So how did this certificate get into the "Trusted Root Certification Authorities" store?

Accessing our forum server through secure port 443, regardless of whether you're using a browser, or CHT's Forum Support Client, you will get the following challenge until you have formally accepted our server certificate, as in fact, being from CHT. Here, using images and text, are the steps through that formal certificate acceptance process.

•• Ask to view our certificate with "View Certificate"


•• "Certificate Information" says that our certificate is not yet installed on this hardware


•• Certificate Import Wizard (1) after clicking "Install Certificate"


•• Certificate Import Wizard (2/3) select "Place all certificates...", then click "Browse"


•• Certificate Import Wizard (4/5) from the certificate browse, select "Trusted Root..." and click "OK"


•• Certificate Import Wizard (6/7) certificate correctly selected, click "Next"


•• Certificate Import Wizard (8/9) double check store name, click "Finish"


•• Certificate Import Wizard (10/11) "Do you want to install this certificate?", click "Yes"


•• Certificate Import Wizard (12) "The import was successful!", click "OK"


•• Double Check From CertMgr.EXE -- The certificate shows up as working from Windows CertMgr.EXE


Okay, you're done.

Henceforth, you can use the port 443 setting with HNDBRWCL.EXE, or any browser, without being challenged.

Should you move to a different computer and wish to use HNDBRWCL.EXE or access our forum on secure port 443 from your browser, just follow the steps above, one time only, on that machine and you'll be good to use port 443 there also.



How To Install CHT's Code Signing Certificate

If any of our utility executables located in \accessory\hnd\ present you with a dialog indicating that your PC doesn't recognize our Code-Signing Certificate, here's how you can make that challenge go away.

You only need to follow these steps once, because CHT code-signed executables all use the same code-signing security certificate, called "CHT Code Sign One". Note in the images for the first and last steps, that the certificate is initially not recognized, and in the last step it is recognized and designated as "OK".

Now, if data loss occurs during download, or due to interference by a virus checker or due to any tampering whatsoever, with our original executable once the certificate is installed, you can confirm that the executable is OK, or not because the certificate message (OK or not OK) will say so.

Here are the steps required to import our code-signing certificate. You may select any HND*.EXE executable located in /accessory/hnd/. Howerver, this example uses HND_WBUPDATERC91.EXE, which happens to be our CHT Webupdater Installer For C9.1.

Step 1 -- Select the CHT .EXE from /accessory/hnd/ and right-click to "Properties"


Step 2 -- If "not trusted", certificate installation is required.


Step 3 -- Click "Next" on the Certificate Import Wizard


Step 4 -- Follow the numbers in order to select the correct "Certificate Store"



Step 5 -- Click "Finish" after confirming you've selected the correct "Certificate Store"


Step 6 -- Confirm that this "Thumbprint" identifies "CHT Code Sign One" by clicking "Yes"


Step 7 -- Yeah! You're done.


If you have ANY difficulty doing this, please do contact us via the CHT Support Forum and tell us your experience.

A video regarding code-signing your own executables with free-self-signed certificates can be found here:
Code Signing Apps And FREE Self-Created Certificates (29 Minutes).