Re: Since users too often click through those warnings.
As an admin is there actually ever a good reason to even allow such a behaviour on client PC's? IE & Chrome both have a GPO setting to forbid users from browsing past certificate errors and the like.
The only time I received a legitimate complaint about this setting was when an insurance company we deal with felt that it was more productive to provide their customers a six-page PDF on how to add their self-signed certificate to our PC's trusted cert store because as we all know insurance companies are really too short on cash to spend a couple bucks a year on an entry-level SSL certificate.