How To Install Zscaler SSL Trusted Root Certificates using Group Policy Manager (Active Directory)
Domain Users will receive the Trusted Root Certificate in their Internet Explorer and Chrome settings.
Example used here is a Windows 2008 Domain Controller.
Step 1. Download the Zscaler CA files from your Zscaler administrative interface by logggin onto
http://admin.zscalerone.net and click Policy & Admin
Step 2. Select Internet Gateways & SSL
Step 3. Download and Save the ZscalerRootCerts.zip file
Step 4. Extract the contents of the ZscalerRootCerts.zip file
Step 5. On your Domain Controller log on as Enterprise Admin and open Group Policy Management
(Click Windows button and type ‘gpedit.msc’.
Step 6. Expand the Default Domain Policy (or an OU you only wish to apply the GPO toward) and expand
Computer Configuration, Policies, Windows Settings, Security Settings and finally Public Key Policies
Step 7. Right Click on Trusted Root Certification Authorities and click Import
Step 8. Click Next (above) and Browse to the path of the Zscaler Root Certs. Select the New-2048 cert.
Click Open.
Step 9. Click Next
Step 10. Verify the certificate(s) will be placed in the Trusted Root Certification Authorities store. Click
Next.
Step 11. Click Finish
Step 12. Click OK
Kevin Moderow
[email protected]
10/25/13