Install ScoutDNS Certificate for Browser HTTPS Errors

Install ScoutDNS Certificate for Browser HTTPS Errors

When a site or domain is blocked by ScoutDNS, a block page is displayed to the end user instead of the requested domain. If the requested domain is encrypted with HTTPS, a security error will occur. To resolve this and display a valid block page for HTTPS sites, you must install the ScoutDNS Root Certificate for block pages.


HTTPS Block Page Error

Manual Windows System Install:


Step 1: Download and open the Certificate. Select "Install Certificate".

Click Install Certificate

Step 2: Select "Local Machine" and then select "Next"




Step 3: Choose "Place all certificate in the following store" and then select "Trusted Root Certificate Authorities".




Step 4: Select "Finish" and you are done.


Install Security Certificate with Active Directory GPO


Step 1: Download the ScoutDNS certificate.
Step 2: Open Administrative Tools and Select Group Policy Management 
Step 3: Right click and create a new policy called ScoutDNS Certificate from within the console tree under the top level of the domain.
Step 4: Select Group Policy Objects in the domain containing the ScoutDNS Certificate Group Policy object (GPO) you want to edit.
Step 5: From within the Group Policy Management Console (GPMC), go to "Computer Configuration > Windows Settings > Security Settings > Public Key Policies".
Step 6: Select/Right-click the Trusted Root Certification Authorities store.
Step 7: Click Import and follow the steps in the Import Wizard to import the downloaded certificate.

The root certificate is now in the Active Directory Trusted Root Certification Authorities container and will be downloaded to any computer that joins the domain.

Manual Mac OS X Install 

Step 1: Download the certificate from within the application. 
Step 2: Double click to open the certificate file.
Step 3: In the Add Certificate windows select "Always Trust".
Step 4: Right click on the ScoutDNS certificate and select "Always Trust".

You are finished.

    • Related Articles

    • Relay - Setup and Configure

      ScoutDNS supports a Relay configuration, allowing operators to install a lightweight service within their network. The relay acts as a local forwarding resolver, processing internal queries while forwarding public queries to the ScoutDNS cloud ...
    • Roaming Clients / Device Agents - Setup, Configure, and Manage

      ScoutDNS provides device agents for organizations that wish to protect devices with DNS-layer security both on and off the network. The ScoutDNS device agent is an extremely lightweight application, best installed on managed devices where ...
    • Single Sign On (SSO) Configuration - Entra ID

      Entra ID SSO Enabling Single Sign On (SSO), allows admins to manage access for their instance through Entra ID SSO. ScoutDNS uses the Open ID Connect (OIDC) protocol for secure commination with Entra ID. SSO will disable all existing ScoutDNS ...
    • Dynamic IP Setup

      ScoutDNS supports dynamic DNS IP address integration with most dynamic DNS providers. Popular Dynamic DNS solutions include: No-IP ChangeIP DynDNS FreeDNS Once you have an account with one of these or a similar solution, you can configure ScoutDNS to ...
    • API Access

      API access is available for certain account types, allowing admins to self-manage API tokens for the standard ScoutDNS Operator API. This help article covers the Public Operator API. For access to other APIs, such as the OEM API, please contact ...
    • Popular Articles

    • Working with Whitelist and Blacklist

      At times, it may be helpful to fully block or allow a domain based on your desired outcome. The White/Black List tab allows you to create and manage custom block and allow lists. You can associate these lists with all policies (global) or assign them ...
    • Quick Start Setup Guide - WAN Forwarding

      There are three methods you can use to protect your networks and users with ScoutDNS: 1) WAN Forwarding – This method involves configuring ScoutDNS with your WAN IP address and forwarding DNS queries from inside your network to our anycast resolver ...
    • Content Categories

      Below is a list of Content Categories and their descriptions. Adult Abortions These are sites that present arguments either in favor of or against abortion. This includes information on abortion procedures, sites that offer assistance in obtaining ...
    • Mixing DNS Providers

      It is generally not recommended to mix DNS providers. Most routers and systems randomly select which DNS server receives each packet, which can lead to issues with filtering and reporting due to mixed rules in the system cache. To avoid these ...
    • Dynamic IP Setup

      ScoutDNS supports dynamic DNS IP address integration with most dynamic DNS providers. Popular Dynamic DNS solutions include: No-IP ChangeIP DynDNS FreeDNS Once you have an account with one of these or a similar solution, you can configure ScoutDNS to ...
    • Recent Articles

    • Applications Categories - Zero Trust App Management

      The ScoutDNS Application Policy sub-tab lets you block whole groups of web applications while still allowing specific apps through an allow list. It covers tens of thousands of domains and supports a zero-trust security approach. For example, you can ...
    • Configure Entra ID based Policies

      ScoutDNS supports policy enforcement by user groups synced from Entra ID (formerly Azure AD). This is useful when admins want policy decisions to follow the user regardless of the device or device profile in use. This guide explains how ScoutDNS ...
    • Setup and Use Guide for MSPs

      ScoutDNS is built for Managed Service Providers (MSPs) to deliver robust DNS protection to their customers and end users. Setup is straightforward, thanks to our object-based configuration approach. Here is a brief outline of what this guide covers. ...
    • Configure AD (Active Directory) Policies

      ScoutDNS supports policy enforcement by user groups synced from Active Directory. This is useful when admins want policy decisions to follow the user regardless of the device or device profile in use. This guide explains how ScoutDNS syncs with ...
    • Configurable Objects and Their Associations

      ScoutDNS is designed with an object-based configuration model to simplify management and large-scale deployment. In this article, we will explore the various configurable objects and their associations. Allow/Block List Allow/Block List Description ...