You're right Daniel, it is very odd that the issue hasn't been addressed yet. I know when I added my particular feature request I was contacted by the PM team to discuss what kind of options I would want to see for SSL certificate management (import a PFX? send an online certificate request? upload private key and certificate files?) but nothing has yet come of that conversation.
To address a couple of your points:
jetty.mortbay.org is an old reference to the original creators of Jetty, MortBay. Jetty is the Java-based web and servlet server from Eclipse that Nimble uses to offer up it's interface. The built-in self-signed certificate is a Jetty default.
Your workaround does clear the IE warning but it also disables some critical checkpoints for validating SSL certificates in the entire browser. IE doesn't provide a method to exempt a certificate on a particular site or for that exact cert, but Firefox does. I use Firefox for most of my admin work now anyway, and it's especially nice since I can tell it to make the Nimble's exception permanent (but only until the certificate in the Nimble changes, or I change the DNS alias of the array). I do the same thing with some other picky systems, notably VMware and Cisco.
I was hoping to see the SSL certificates fixed in NOS 2.0 but alas, 'twas not to be. Hopefully sometime very soon, especially for those prospective customers who HAVE to have a signed cert for compliance reasons (like Mark Harrison).
Alan
