Allow a Certificate Authority to Suppress Man-in-the-Middle Threats

If an allowlisted certificate authority is present in a certificate chain as a root, intermediate, or leaf certificate, that connection does not generate Man-in-the-Middle threats in the Lookout MES Console.

There are two ways to allow a certificate:

Navigate to the Issue Details page for an MitM detection and click to allowlist the certificate:
1. From the Issues module, select the MitM attack with the certificate that you wish to allowlist.
2. Click Trust certificates.
3. Optionally, in the Trust certificates dialog box, uncheck any certificates you do not wish to trust, then click Trust these certificates:
4. Click Okay.
Manually upload the certificate:
1. Navigate to the Protections module and scroll down to the Man-in-the-Middle Attack
  
  issue classification, then click the configuration gear:
2. Click Add an Entry and browse to the certificate file you wish to upload.
3. Click Save changes.
  
  To remove an allowlisted certificate:
Navigate to the Protections module and scroll down to the Man-in-the-Middle Attack issue classification, then click the configuration gear.
Remove a certificate by highlighting its row and clicking the trash icon:
Click Save changes.

lookout-footer

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Allow a Certificate Authority to Suppress Man-in-the-Middle Threats

lookout-footer