Install ScoutDNS Certificate for Browser HTTPS Errors
When a site or domain is blocked by ScoutDNS, a block page is displayed to the end user instead of the requested domain. If the requested domain is encrypted with HTTPS, a security error will occur. To resolve this and display a valid block page for HTTPS sites, you must install the ScoutDNS Root Certificate for block pages.
Manual Windows System Install:
Step 1: Download and open the Certificate. Select "Install Certificate".
Step 2: Select "Local Machine" and then select "Next"
Step 3: Choose "Place all certificate in the following store" and then select "Trusted Root Certificate Authorities".
Step 4: Select "Finish" and you are done.
Install Security Certificate with Active Directory GPO
Step 1: Download the ScoutDNS certificate.
Step 2: Open Administrative Tools and Select Group Policy Management
Step 3: Right click and create a new policy called ScoutDNS Certificate from within the console tree under the top level of the domain.
Step 4: Select Group Policy Objects in the domain containing the ScoutDNS Certificate Group Policy object (GPO) you want to edit.
Step 5: From within the Group Policy Management Console (GPMC), go to "Computer Configuration > Windows Settings > Security Settings > Public Key Policies".
Step 6: Select/Right-click the Trusted Root Certification Authorities store.
Step 7: Click Import and follow the steps in the Import Wizard to import the downloaded certificate.
The root certificate is now in the Active Directory Trusted Root Certification Authorities container and will be downloaded to any computer that joins the domain.
Manual Mac OS X Install
Step 1: Download the certificate from within the application.
Step 2: Double click to open the certificate file.
Step 3: In the Add Certificate windows select "Always Trust".
Step 4: Right click on the ScoutDNS certificate and select "Always Trust".
You are finished.
Related Articles
Relay - Setup and Configure
ScoutDNS supports a Relay configuration, allowing operators to install a lightweight service within their network. The relay acts as a local forwarding resolver, processing internal queries while forwarding public queries to the ScoutDNS cloud ...Roaming Clients / Device Agents - Setup, Configure, and Manage
ScoutDNS provides device agents for organizations that wish to protect devices with DNS-layer security both on and off the network. The ScoutDNS device agent is an extremely lightweight application, best installed on managed devices where ...Single Sign On (SSO) Configuration - Entra ID
Entra ID SSO Enabling Single Sign On (SSO), allows admins to manage access for their instance through Entra ID SSO. ScoutDNS uses the Open ID Connect (OIDC) protocol for secure commination with Entra ID. SSO will disable all existing ScoutDNS ...Dynamic IP Setup
ScoutDNS supports dynamic DNS IP address integration with most dynamic DNS providers. Popular Dynamic DNS solutions include: No-IP ChangeIP DynDNS FreeDNS Once you have an account with one of these or a similar solution, you can configure ScoutDNS to ...API Access
API access is available for certain account types, allowing admins to self-manage API tokens for the standard ScoutDNS Operator API. This help article covers the Public Operator API. For access to other APIs, such as the OEM API, please contact ...
Popular Articles
Working with Whitelist and Blacklist
At times, it may be helpful to fully block or allow a domain based on your desired outcome. The White/Black List tab allows you to create and manage custom block and allow lists. You can associate these lists with all policies (global) or assign them ...Quick Start Setup Guide - WAN Forwarding
There are three methods you can use to protect your networks and users with ScoutDNS: 1) WAN Forwarding – This method involves configuring ScoutDNS with your WAN IP address and forwarding DNS queries from inside your network to our anycast resolver ...Content Categories
Below is a list of Content Categories and their descriptions. Adult Abortions These are sites that present arguments either in favor of or against abortion. This includes information on abortion procedures, sites that offer assistance in obtaining ...Mixing DNS Providers
It is generally not recommended to mix DNS providers. Most routers and systems randomly select which DNS server receives each packet, which can lead to issues with filtering and reporting due to mixed rules in the system cache. To avoid these ...Dynamic IP Setup
ScoutDNS supports dynamic DNS IP address integration with most dynamic DNS providers. Popular Dynamic DNS solutions include: No-IP ChangeIP DynDNS FreeDNS Once you have an account with one of these or a similar solution, you can configure ScoutDNS to ...
Recent Articles
Applications Categories - Zero Trust App Management
The ScoutDNS Application Policy sub-tab lets you block whole groups of web applications while still allowing specific apps through an allow list. It covers tens of thousands of domains and supports a zero-trust security approach. For example, you can ...Configure Entra ID based Policies
ScoutDNS supports policy enforcement by user groups synced from Entra ID (formerly Azure AD). This is useful when admins want policy decisions to follow the user regardless of the device or device profile in use. This guide explains how ScoutDNS ...Setup and Use Guide for MSPs
ScoutDNS is built for Managed Service Providers (MSPs) to deliver robust DNS protection to their customers and end users. Setup is straightforward, thanks to our object-based configuration approach. Here is a brief outline of what this guide covers. ...Configure AD (Active Directory) Policies
ScoutDNS supports policy enforcement by user groups synced from Active Directory. This is useful when admins want policy decisions to follow the user regardless of the device or device profile in use. This guide explains how ScoutDNS syncs with ...Configurable Objects and Their Associations
ScoutDNS is designed with an object-based configuration model to simplify management and large-scale deployment. In this article, we will explore the various configurable objects and their associations. Allow/Block List Allow/Block List Description ...