Only import certs signed by yourself or someone you deeply trust!
Importing certs signed by untrusted person may cause great loss to you!
1. Internet Explorer (System cert pool)
For self-signed single website cert, you should add it to trusted root CA.
For self-signed CA cert, just add the it to trusted root CA. Then all websites certs affiliated to it are automatically trusted.