In order for our firewall to properly filter websites, it must use SSL Inspection to inspect the communication between your device and the website. It is advised that you trust our root certificate to prevent any errors caused by our Firewall presenting a cert to your device. This is automatically done for internal devices, but you will have to manually follow this process on a personal device.
Download Certificate Profile
*You must be connected to OPRFX to access this cert profile.
Tap on the button below to initiate the profile download.
The device will show the message below.
- Tap Allow.
The device will display the message "Review the profile in Settings app if you want to install it."
- Tap Close.
Install Certificate Profile
- Navigate to settings.
- Tap Profile Downloaded.
A window for the profile OP-CERT-01 will pop up. You may have to tap on the profile if it doesn't pop up automatically.
- Tap Install
- If your device prompts you for your passcode, enter it now.
Your device will display a new window. This is warning you that you are adding the certificate, but additional actions will need to be taken.
- Tap Install once again.
You will be returned to the profile window where the cert will now show as verified.
- Tap Done.
Trusting CA Certificate
The final step is to trust the certificate so that you do not get warnings on your browser.
- Navigate to Settings > General > About > Certificate Trust Settings (at the bottom of the page).
- Tap the toggle next to the OP-CERT-01 certificate under the "enable full trust for root certificates" section.
Your device will display a warning about the implications of trusting this cert. This cert can only be used by OPRF systems, so there is a limited risk to data privacy.
- Tap Continue.