Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Install Root Certificate Authority

The forward proxy decrypts traffic to inspect it, then encrypts the traffic after inspecting it. To make this possible, each user device must trust the certificate, which requires you to install the certificate authority (CA) certificate on the device.

  1. In the Management Console, select Administration > Certificate Management.
  2. Select the Trusted CAs tab.
  3. Locate the forward proxy certificate on the list with a name similar to

    CN=<tenant-name>_fwd_prxy and select the View Certificate Detail action for the certificate.

  4. Click the Pem Certificate link.
  5. Save it on the user device with a file type of .cer, either by clicking the Download icon or by clicking Copy to Clipboard, then pasting the text into a text file.
    This is the root certificate that you must install on each user device.
  6. Install the certificate on the user device.
    Windows:
    1. Double-click the file.
    2. Select Install certificate.
    3. Select Local Machine.
    4. Add the certificate to the Trusted Root Certificate Authorities store.
      MacOS:
    5. Double-click the file.
    6. In the Add Certificate prompt, select Login and click Add.
    7. Enter the administrator password to use the keychain.
    8. Click Add Certificates.
    9. In the Trust prompt, select Always Trust for these options:
      1. When Using This Certificate
      2. X.509 Basic Options
    10. Enter the administrator password to save the trust settings.