Hi Dave,
If you're using a commercial vendor to sign your SSL certificate (eg: Thawte, Verisign), check the expiry date on the certificate. That's one of the most common issues that comes up.
Otherwise, I'm assuming that your SSL certificate is self-signed, and that you're running your service as intranet-only (eg: 192.x.x.x or 10.x.x.x).
If you add your custom root certificate to the clients that will access your ccmuser application, the warning messages should disappear. Depending on your environment, you may be able to roll out the custom certificate via .cab files, or via ActiveX.
If your intranet server is a linux machine(or you're using OpenSSL on Windows), take a look at the following links:
For more information on creating a local Certificate Authority, see: http://sial.org/howto/openssl/ca/
If you haven't generated a self-signed SSL cert, or want more information on it, take a look at: http://sial.org/howto/openssl/self-signed/
Cheers,
-James
Please rate helpful posts, thanks!