How can I manually import the Client DPI-SSL CA certificate into Firefox?

12/20/2019 1,157 People found this article helpful 102,150 Views

Download

Print

Share

• LinkedIn
• Twitter
• Facebook
• Email
• Copy URL The link has been copied to clipboard

Description

To avoid certificate trust errors and to enable the re-signing certificate authority to successfully re-sign certificates, browsers must trust this certificate authority. Such trust can be established by having the re-signing certificate imported into the browser's trusted CA list. Internet Explorer, Chrome, Opera uses the Windows Certificate store to build trust. Mozilla Firefox uses its own certificate store and the CA certificate must be manually imported into the Firefox certificate store. This article describes the process of manual import of the SonicWall DPI-SSL CA certificate into Mozilla Firefox.

Don't want to read? Watch instead!

Resolution

On the SonicWall Web UI 

•  6.5 Firmware UI - go to  MANAGE | Decryption Services | DPI-SSL/TLS Client 
•  5.9/6.2 Firmware UI - go to DPI-SSL | Client SSL | Certificate 
  choose the appropriate DPI-SSL Certificate from the drop down menu and click on the (download) link to save the Certificate on the PC. 

On the Client: 

1. Open Firefox
2. Navigate to Tools | Options, click Privacy & Security and scroll down to Certificates (or in the older versions:  Advanced tab and then the Certificates tab).
3. Click View Certificates, select the Authorities tab, and click Import.
4. Select the certificate file, make sure the "Trust this CA to identify websites" check box is selected, and click OK.

Related Articles

• App Control fails by schema error when editing VPN category
• Custom Geo-IP list to exclude a website from Geo-IP filter
• GVC stuck on acquiring IP for some users

Categories

• Firewalls > NSa Series > Client/Server DPI-SSL
• Firewalls > NSv Series > Client/Server DPI-SSL
• Firewalls > TZ Series > DPI-SSL