1

NextDNS Root CA. Is this supposed to install automatically?

Is the NextDNS Root CA supposed to install itself during client installation? 
I found that when installing the client, this cert does not install. I had to install it myself. So in the case of a mass rollout, I will need to push out the cert to everyone first.  Otherwise users will get SSL errors in their browser. Is that by design?

4 replies

null
    • R_P_M
    • 1 yr ago
    • Reported - view

    You do not need the certificate to use NextDNS. The certificate is explicitly for use with the block page option, there’s no other reason to use it. 

      • Luke_MEek
      • 1 yr ago
      • Reported - view

        That's exactly what I'm doing. Rolling it out to an org to block bad clicks. They all need to see that block page, not a browser error.  

    • Calvin_Hobbes
    • 1 yr ago
    • Reported - view

    When creating the .mobileconfig file, be sure to select “more options” and then select the “Trust NextDNS root certificate”

    • Luke_MEek
    • 1 yr ago
    • Reported - view

    I guess the bottom line question is, Is there a command line switch I can use to install the cert while deploying the MSI? Or will I need to deploy the cert separately? 

Login to reply

Content aside

  • 1 Likes
  • 1 yr agoLast active
  • 4Replies
  • 215Views
  • 4 Following