The guide Chris mentioned talks about setting up SSL, but you need to import the certificate into the "trusted root CA" store in Internet Options on every machine which will open the document.<br /><br />You probably have got the SSL set up correctly, but just to emphasise there should be absolutely no warnings what-so-ever in IE when you hit the
https://hostname:8443 address -after- closing and reopening the browser, and it should show the Padlock symbol to indicate the SSL is on. In my experience this means that the first part of the CN must be the exact hostname which you will access the server to avoid the "cert doesn't belong to this host" error which will appear in addition to the "untrusted CA" error.<br /><br />And if you are using the server in production where clients may not have permission to add trusted root CA's then you will need to use a proper SSL certificate. This guide worked for me:<br /><br />http://blogs.adobe.com/livecycle/2006/10/configuring_jboss_325_with_a_r.html<br /><br />(p.s. I'd recommend NOT using any symbols in the keystore password, or you may have to change it to get it running with JBoss)<br /><br />______________________<br /><br />Once you are absolutely sure the SSL is spot on, this is the step which you may have missed:<br /><br />On the Policy Server administration panel, go to "Configuration" -> "Server Configuration", then update the base url. It should look like:<br /><br />https://<cn_on_ssl_cert>:8443<br /><br />Once you've updated that address, you will need to reapply any policies, since the server address is stored in the PDF document itself. Don't forget to update the policy server address in Acrobat too.<br /><br />Hope that helps,<br /><br />Robert