-<p>You'll probably want to edit both Preferred Applications and the Main Menu entry (I'm assuming you run Gnome here; if not, there may be other things you want to edit) to reflect this, so links you click on outside of Chrome open this way. (Gnome Do and similar pull their data from Main Menu, among other places.) Once you've done this, you can check your work with <a href="https://scripts-cert.mit.edu/~geofft/demo/detect.php">this demo page</a>. If everything is working, it should welcome you by name, and tell you that a certificate for your username is installed.</p>
+<blockquote><code>certutil -d sql:$HOME/.pki/nssdb -A -t "C,," -n "MIT CA" -i path/to/mitca.crt</code></blockquote>
+
+<p>For more information, see Mozilla's documentation on <a href="http://www.mozilla.org/projects/security/pki/nss/tools/certutil.html"><tt>certutil</tt></a>.</p>
+
+<h3>Enrolling in and Using Client Certificates</h3>
+
+<p>As of Chrome 7, the standard workflows should work without workarounds. Visit the usual <a href="https://ca.mit.edu/ca/">web interface</a> and follow the instructions to install certs normally. You can check your work with <a href="https://scripts-cert.mit.edu/~geofft/demo/detect.php">this demo page</a>. If everything is working, it should welcome you by name, and tell you that a certificate for your username is installed.</p>
+
+<h3>Using a Smart Card or Other Password-Protected Certificate Store</h3>
+
+<p>While NSS does allow you to configure your certificate store to use smart cards or protected by a password, Chrome does not support this yet. Star bug <a href="http://code.google.com/p/chromium/issues/detail?id=42073">#42073</a> to receive updates.</p>