I have created an applet that is going to be deployed on our company's intranet. It needs to be signed, as it's going to access resources on the user's machine. I have created a self-signed certificate using keytool and exported the certificate as indicated in the Sun tutorial. The problem is, I need to sign it for use in IE. Since it's only going to be available behind the firewall, I believe using a self-signed certificate should be adequate, but I cannot figure out how to import the self-signed certificate into the trusted root store for signing the cab file. Would someone please tell em how to do this? I have the MS SDK for Java and I have created the cab file for deployment, I just can't figure out how to sign it with a trusted self-signed certificate. Many thanks!