How do I use the Zscaler certificate for SSL inspection?
To use the Zscaler certificate, download it and import it into your user’s browsers. Log in to the Zscaler service and do the following:
- Go to Policy> Web > SSL Inspection.
- In the Intermediate Root Certificate Authority for SSL Interception section, click Download Zscaler Root Certificate.
- Navigate to the ZscalerRootCerts.zip file and unzip it.
- Import the Zscaler certificate into the certificate store of your browser. (See example below for importing the certificate into IE 11).
You must then import the Zscaler certificate into your user’s browsers. To facilitate deployment in Microsoft Active Directory environments, use the GPO feature to deploy the certificate to all users in your network.
Example: Importing the Zscaler Certificate into IE 11
The following instructions explain how to import into the certificate store of Internet Explorer 11. See your browser’s documentation if you have a different browser.
A. Open Internet Explorer and go to the Gear icon and select Internet Options.
B. Go to the Content tab and click Certificates.
C. Click Import.
D. When the Certificate Import Wizard appears, click Next.
E. Navigate to the Zscaler certificate and click Next.
F. When you are asked to select a location for the Zscaler certificate, select Trusted Root Certification Authorities.
G. When the browser displays the warning shown below, click Yes.
H. Click Finish to exit the wizard.