Web browsers use Root Certificates when loading SSL encrypted web pages. If the proper certificate is not installed on the device, the user can get error messages when browsing. You will be presented with a similar certificate warning page while getting website/ URL blocked notification (splash) page. This requires you to install Exium Root Certificate on your devices to allow us to show the notification page in secure https SSL/ TLS encyption form.
As part of of our Client software, Exium installs a Root SSL/ TLS certificate on your device. This generally works for all browsers with the exception of FireFox that requires an additional step as described below.
Firefox users on Windows are presented with a certificate warning page while getting website/ URL blocked notification (splash) page. By default, Firefox is unable to use the Windows certificate store since the setting "security.enterprise_roots.enabled” is set to false by default. This causes Firefox to not recognize certificates from the Windows cert store automatically. This issue doesn’t happen with Chrome/Edge as they automatically recognize and use the Windows Certificate store to validate certificates.
Starting with version 49, Firefox can be configured to automatically search for and import CAs that have been added to the Windows certificate store by a user or administrator.
Alternatively, you can use an enterprise policy (recommended) to add CA certificates to Firefox as described in this article.
For expert guidance on implementing SASE, XDR, IAM, and GRC solutions, reach out to Exium at partners@exium.net. If you are ready to get started, check out our testing and onboarding process.