How do I use the Zscaler certificate for SSL inspection?

To use the Zscaler certificate, download it and import it into your user’s browsers. Log in to the Zscaler service and do the following:

  1. Go to Policy> Web > SSL Inspection.
  2. In the Intermediate Root Certificate Authority for SSL Interception section, click Download Zscaler Root Certificate.
  3. Navigate to the ZscalerRootCerts.zip file and unzip it.
  4. Import the Zscaler certificate into the certificate store of your browser. (See example below for importing the certificate into IE 11).

    You must then import the Zscaler certificate into your user’s browsers. To facilitate deployment in Microsoft Active Directory environments, use the GPO feature to deploy the certificate to all users in your network.

Example: Importing the Zscaler Certificate into IE 11

Example: Importing the Zscaler Certificate into IE 11

 

The following instructions explain how to import into the certificate store of Internet Explorer 11. See your browser’s documentation if you have a different browser.

A.  Open Internet Explorer and go to the Gear icon and select Internet Options.

B.  Go to the Content tab and click Certificates.

See image.

C.  Click Import.

See image.

D.  When the Certificate Import Wizard appears, click Next.

E.  Navigate to the Zscaler certificate and click Next.

See image.

F.  When you are asked to select a location for the Zscaler certificate, select Trusted Root Certification Authorities.

See image.

G.  When the browser displays the warning shown below, click Yes.

See image.

H.  Click Finish to exit the wizard.

Image 1

Image 1

Image 2

Image 2

Image 3

Image 3

Image 4

Image 4

Image 5

Image 5