Install ScoutDNS Certificate for Browser HTTPS Errors
When a site or domain is blocked by ScoutDNS, a block page is displayed to the end user instead of the requested domain. If the requested domain is encrypted with HTTPS, a security error will occur. To resolve this and display a valid block page for HTTPS sites, you must install the ScoutDNS Root Certificate for block pages.
The Block Page Certificate is AUTOMATICALLY installed with all Windows Roaming Client Deployments. Network and MacOS require separate deployment of the cert.
Manual Windows System Install:
Step 1: Download and open the Certificate. Select "Install Certificate".
Step 2: Select "Local Machine" and then select "Next"
Step 3: Choose "Place all certificate in the following store" and then select "Trusted Root Certificate Authorities".
Step 4: Select "Finish" and you are done.
Install Security Certificate with Active Directory GPO
Step 1: Download the ScoutDNS certificate.
Step 2: Open Administrative Tools and Select Group Policy Management
Step 3: Right click and create a new policy called ScoutDNS Certificate from within the console tree under the top level of the domain.
Step 4: Select Group Policy Objects in the domain containing the ScoutDNS Certificate Group Policy object (GPO) you want to edit.
Step 5: From within the Group Policy Management Console (GPMC), go to "Computer Configuration > Windows Settings > Security Settings > Public Key Policies".
Step 6: Select/Right-click the Trusted Root Certification Authorities store.
Step 7: Click Import and follow the steps in the Import Wizard to import the downloaded certificate.
The root certificate is now in the Active Directory Trusted Root Certification Authorities container and will be downloaded to any computer that joins the domain.
Manual Mac OS X Install
Step 1: Download the certificate from within the application.
Step 2: Double click to open the certificate file.
Step 3: In the Add Certificate windows select "Always Trust".
Step 4: Right click on the ScoutDNS certificate and select "Always Trust".
You are finished.
Related Articles
ScoutDNS Windows Agent Diagnostic Tool Guide
ScoutDNS Windows Agent Diagnostic Tool Guide Overview The ScoutDNS diagnostic tool helps troubleshoot Windows agent issues by collecting system and configuration data for analysis. This guide explains when and how to use the tool effectively. When to ...Relay - Setup and Configure
ScoutDNS supports a Relay configuration, allowing operators to install a lightweight service within their network. The relay acts as a local forwarding resolver, processing internal queries while forwarding public queries to the ScoutDNS cloud ...Roaming Clients / Device Agents - Setup, Configure, and Manage
ScoutDNS provides device agents for organizations that wish to protect devices with DNS-layer security both on and off the network. The ScoutDNS device agent is an extremely lightweight application, best installed on managed devices where ...Dynamic IP Setup
ScoutDNS supports dynamic DNS IP address integration with most dynamic DNS providers. Popular Dynamic DNS solutions include: No-IP ChangeIP DynDNS FreeDNS Once you have an account with one of these or a similar solution, you can configure ScoutDNS to ...Single Sign On (SSO) Configuration - Entra ID
Entra ID SSO Enabling Single Sign On (SSO), allows admins to manage access for their instance through Entra ID SSO. ScoutDNS uses the Open ID Connect (OIDC) protocol for secure commination with Entra ID. SSO will disable all existing ScoutDNS ...
Popular Articles
Working with Whitelist and Blacklist
At times, it may be helpful to fully block or allow a domain based on your desired outcome. The White/Black List tab allows you to create and manage custom block and allow lists. You can associate these lists with all policies (global) or assign them ...Quick Start Setup Guide - WAN Forwarding
This quick start guide is meant to help get up and running quickly with the various deployment methods offered. This is the general use guide. If you are an MSP, please visit the MSP Setup Guide. There are three methods you can use to protect your ...Content Categories
Below is a list of Content Categories and their descriptions. Adult Abortions These are sites that present arguments either in favor of or against abortion. This includes information on abortion procedures, sites that offer assistance in obtaining ...Mixing DNS Providers
It is generally not recommended to mix DNS providers. Most routers and systems randomly select which DNS server receives each packet, which can lead to issues with filtering and reporting due to mixed rules in the system cache. To avoid these ...YouTube Restricted Mode Explained
ScoutDNS supports YouTube's restricted modes, allowing for a level of content control on the platform. While individual videos cannot be allowed or blocked at the URL level, Google G Suite users can approve specific videos for others within the same ...
Recent Articles
ScoutDNS Windows Agent Diagnostic Tool Guide
ScoutDNS Windows Agent Diagnostic Tool Guide Overview The ScoutDNS diagnostic tool helps troubleshoot Windows agent issues by collecting system and configuration data for analysis. This guide explains when and how to use the tool effectively. When to ...SIEM Data Export
Overview The SIEM Data Export feature allows administrators to stream DNS query and event data from ScoutDNS directly into their SIEM or log analytics platform for advanced analysis, threat correlation, and compliance reporting. ScoutDNS currently ...Applications Categories - Zero Trust App Management
The ScoutDNS Application Policy sub-tab lets you block whole groups of web applications while still allowing specific apps through an allow list. It covers tens of thousands of domains and supports a zero-trust security approach. For example, you can ...Configure Entra ID based Policies
ScoutDNS supports policy enforcement by user groups synced from Entra ID (formerly Azure AD). This is useful when admins want policy decisions to follow the user regardless of the device or device profile in use. This guide explains how ScoutDNS ...Setup and Use Guide for MSPs
ScoutDNS is built for Managed Service Providers (MSPs) to deliver robust DNS protection to their customers and end users. Setup is straightforward, thanks to our object-based configuration approach. Here is a brief outline of what this guide covers. ...