Overview

If you use HTTPS filtering in Kerio Control and administer your users through Microsoft Active Directory, you can deploy a Kerio Control certificate to users' computers via Active Directory. The entire process consists of two steps:

• Exporting a certificate from Kerio Control. For more information refer to related articles.
• Deploying root certificate via Active Directory.

 

Back to top

---

  

Process

To Deploy Root Certificate via Active Directory:

1. Log in to your Active Directory server as an administrator and open the Group Policy Management console.
2. Find an existing GPO or create a new one. The GPO must be associated with the domain, or organizational unit of the computers you want to affect.
3. Right-click the GPO and select Edit. The Group Policy Management Editor opens and displays the current contents of the policy object.
4. Go to Computer Configuration > Windows Settings > Security Settings > Public Key Policies > Trusted Root Certification Authorities.
5. Right-click Trusted Root Certification Authorities and select the Import option.
6. Follow the Certificate Import Wizard to find and import the certificate.

 

To Verify That the Certificate Is Deployed to the Workstations:

1. Choose a workstation in the domain and restart it, or execute the following command:
   gpudate /force
2. Open Internet Explorer > Tools > Internet Options > Content > Certificates > Trusted Root Certification Authorities.
3. Verify that your certificate is present.

 

Back to top

---