Where does it say so? Your browser? This is because self-signed certificates are not considered that secure, as there is no authority behind them (no certificate issuing institution who can prove this certificate is true). Self-signed certificate is generated by your computer, so it can be altered by you or someone else. Many still use self-signed certificates as this is easier and cheaper and it still encrypts your traffic. Usually self-signed certificates are enough in local networks.
Or maybe you are going into http://server:9090 ? This connection is not encrypted. If you want to disable 9090 port, then stop Openfire, edit /conf/openfire.xml and change
as stated below my server already have a self signed RSA & DSA, and what I’m hoping to do is to get rid the “Connection is Not Secure” notification, how can i do that using a CA from third party like Go daddy.? or if i’m going to use the self signed, how can i install it to the browser.? when i open the self signed cert there was no export button.
Why do you want to get rid of that notification in the browser? This is Admin Console, so it usually only affects admins. Unless you are using some plugin like Ofmeet and users go to that URL. Of course, same certificate is used for clients connection. So a more sophisticated clients will show a warning. In Spark you will need to enable “Accept All certificates” to be able to connect.
Yes, you can use a third party cert, but i can’t help with that. Never used myself. I don’t know if it is possible to export a self-signed certificate either.
P.S. in future do not ask for prompt replies. I know you probably didn’t mean anything bad, but as we are all here just volunteers it sounds rude to demand quick reply