Install the CA to avoid certificate errors

when you try to open an https blocked website for security policies, a browser certificate warning message appears to avoid this issue you can install our certification authority (ca) on your devices it's possible to perform a manual installation or a massive deployment under microsoft active directory server 1 1 manual installation logon with an administrative account on the device download the certification authority https //cloud flashstart com/customerarea/share php?mode=download\&lang=en\&code=share ca ssl on the desktop unzip the webfilter zip file and right click on the extracted webfilter crt file click \[install certificate] from the menu choose to install the certificate for local machine and press \[next] to continue choose place all certificates in the following store and then click on the \[browse ] button highlight trusted root certification authorities and then confirm with \[ok] finally, click \[finish] to complete the ca installation n b if it does not work on mozilla firefox, please refer to the import ca on firefox docid\ pnpcb1wnbainqorm8e qp 2 2 installation using active directory gpo certification authority using the group policy in a microsoft active directory environment note in the following guide we'll explain how to create the policy with microsoft windows server 2012 but the steps are silimar also with the other versions of windows log into your active directory server, using an administrative account and download the certification authority https //cloud flashstart com/customerarea/share php?mode=download\&lang=en\&code=share ca ssl on the desktop unzip the webfilter zip file and right click on the extracted webfilter crt file open the group policy management console by running gpmc msc command choose your domain, right click and select create a gpo in this domain and link it here type a name for your gpo and click \[ok] to create it righ click on the policy you've just created and then select \[edit] in the new window navigate to computer configuration >policies >windows settings >security settings >public key policies right click on the trusted root certification authorities entry and click \[import] click \[next] and then click \[browse ] to choose our certification authority select the extracted certificate, called webfilter crt, you saved before on your desktop and click \[open] click \[next] to proceed choose place all certificates in the following store and then click on the \[browse ] button highlight trusted root certification authorities and then confirm with \[ok] then confirm with \[next] finally, click \[finish] to complete the procedure navigate to computer configuration >policies >administrative templates policy definitions >windows components >windows update double click allow signed content from intranet microsoft update service location next select \[enabled] click \[ok] to confirm the new group policy will be updated, on your internal devices, based on the refresh interval time the standard interval is 90 minutes note you can use the gpupdate /force command to immediately load the policy on your pc other ways to ask how can i install the certificate authority to prevent ssl/tls certificate errors? what steps should i take to install the ca and eliminate certificate trust issues?