Overview
If you use HTTPS filtering in Kerio Control and administer your users through Microsoft Active Directory, you can deploy a Kerio Control certificate to users' computers via Active Directory. The entire process consists of two steps:
- Exporting a certificate from Kerio Control. For more information refer to related articles.
- Deploying root certificate via Active Directory.
Process
To Deploy Root Certificate via Active Directory:
- Log in to your Active Directory server as an administrator and open the Group Policy Management console.
- Find an existing GPO or create a new one. The GPO must be associated with the domain, or organizational unit of the computers you want to affect.
- Right-click the GPO and select Edit. The Group Policy Management Editor opens and displays the current contents of the policy object.
- Go to Computer Configuration > Windows Settings > Security Settings > Public Key Policies > Trusted Root Certification Authorities.
- Right-click Trusted Root Certification Authorities and select the Import option.
- Follow the Certificate Import Wizard to find and import the certificate.
To Verify That the Certificate Is Deployed to the Workstations:
- Choose a workstation in the domain and restart it, or execute the following command:
gpudate /force
- Open Internet Explorer > Tools > Internet Options > Content > Certificates > Trusted Root Certification Authorities.
- Verify that your certificate is present.