Watchguard Firebox Ssl Client Download

Being so ambitious to facilitate the readers, she intermittently tries Watchguard Firebox Ssl Vpn Client Mac her hand on the tech-gadgets and services popping frequently in the industry to reduce any ambiguity in her mind related to the project Watchguard Firebox Ssl Vpn Client Mac on she works, that a huge sign of dedication to her work. Firebox SSL Client, Free Download by WatchGuard. Kerio VPN Client helps connect remote users and offices securely and easily. Import a Certificate on a Client Device. When you configure your Firebox to use a certificate for HTTPS content inspection or authentication, you must import that certificate on each client device in your network to prevent security warnings in their web browsers.

  1. Watchguard Firebox Ssl Client Download
  2. Watchguard Firebox Ssl Client Download Mac
  3. Watchguard Firebox Ssl Client Download Windows 7
  4. Watchguard Firebox Ssl Vpn Client Download
31 Mar 2020 By Brendan Patterson

WatchGuard has posted Fireware 12.5.3 and WSM 12.5.3 in the Software Download Center. These new releases introduce several key bug fixes and some new enhancements. Full details are provided in the Release Notes and the What’s New presentation. We’ve seen a huge increase in the number of people using Mobile VPN for remote access over the past few weeks, so please note that this release also includes an updated version of the SSL VPN client for Mac and Windows.

Key Updates of This Release:

  • Mobile VPN with SSL improvements, including the elimination of an upgrade prompt that did not apply to non admin users, along with several bug fixes.
  • Gateway Wireless Controller support for the AP225W wall plate access point, which is ideal for multi-dwelling unit (MDU) structures such as dorm rooms, shared office spaces, smart apartments and condos.
  • Trusted Platform Module (TPM) support for registration of Fireboxes to WatchGuard Cloud, eliminating the need to enter a verification code.
  • Web setup wizard has been enhanced to simplify RapidDeploy in environments that do not use DHCP.
  • Support for the latest Autotask API updates. We strongly recommend all users of the Autotask integration to read the relevant notes in the What’s New and upgrade to 12.5.3 before April 15th.

Software Download Center
Firebox appliance owners with active support subscriptions can obtain Fireware 12.5.3 without additional charge by downloading the applicable packages from the WatchGuard Software Download Center. If you are already running Fireware 12.5.2, you can now use WatchGuard Cloud to simply upgrade the firmware on all of your appliances.

Does this release pertain to me?
Fireware 12.5.3 is available for all Firebox T and Firebox M appliances. The Mobile VPN with SSL 12.5.3 client has also been posted for XTM appliances.

Contact
For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance Serial Number or Partner ID available.

When you configure your Firebox to use a certificate for HTTPS content inspection or authentication, you must import that certificate on each client device in your network to prevent security warnings in their web browsers. You can perform this import on each individual client device, or use group policies with Microsoft Active Directory to automatically install the certificate for all clients.

For HTTPS Proxy content inspection, you can use the default Proxy Authority Certificate Authority (CA) certificate on your device. If your organization already has a Public Key Infrastructure (PKI) set up with a trusted CA, you can import a certificate on your device that is signed by the internal CA.

For more information on content inspection and certificates, see Use Certificates with HTTPS Proxy Content Inspection.

For instructions on how to export a certificate from your Firebox, see Export a Certificate from Your Firebox.

When you export a certificate from your device, the certificate is saved in PEM format. For some certificate distribution methods, the preferred certificate format for import is the DER format. For information on how to convert certificate formats, see Convert Certificate Format.

Each client operating system and web browser has different methods to import certificates. Instructions for the most common operating systems and web browsers are described in the next sections. For other operating systems and browsers, see the manufacturer's documentation.

WatchGuard provides interoperability instructions to help our customers configure WatchGuard products to work with products created by other organizations. If you require more information or technical support about how to configure a non-WatchGuard product, see the documentation and support resources for that product.

Import a Certificate from the Certificate Portal on the Firebox

A client can download and install the Proxy Authority certificate from the Certificate Portal on the Firebox.

To download and install the certificate:

Watchguard firebox ssl client download windows 10
  1. Open a web browser and go to http://<Firebox IP address>:4126/certportal.
  2. Click Download.
    The certificate downloads to your computer.
  3. After you download the file, double-click the file and follow the instructions to install the certificate. You must specify the Trusted Root Certification Authorities store as the location for the certificate during this process.

For more information, see Certificate Portal.

Import a Certificate on Windows Clients with Internet Explorer

When you install a certificate in the Trusted Root Certification Authorities with Internet Explorer, this enables the entire system, including other programs or services that use the Windows certificate store, to use that certificate for the currrent user. For example, the Google Chrome browser for Windows and Windows Update will also use any installed certificates.

If the certificate is in DER format, you can format the file name with an extension of .der, .cer, or .crt. You can then distribute this certificate to users who can double-click the certificate file to start the certificate installer on their system.

To import a certificate with Internet Explorer manually:

  1. Select Tools.
  2. Select Internet Options.
  3. Select the Content tab.
  4. Click Certificates.
  5. Click Import and follow the steps in the Certificate Import Wizard to import the certificates. You must specify the Trusted Root Certification Authorities as the location for the certificate during this process.

Watchguard Firebox Ssl Client Download

When you import a certificate through the Certificate Import Wizard, the certificate is imported into the stores of the current user. To import the certificate into the local machine stores so all users can use the certificate, you must double-click the certificate file and import it to the local machine stores.

Import a Certificate on Windows Clients with Active Directory Group Policy

You can also deploy certificates to your Windows client devices through a group policy object from your Active Directory server. This enables you to update all Windows clients on your domain automatically with the required certificates.

For Windows Server 2012, 2012 R2, and 2016, see Distribute Certificates to Client Computers by Using Group Policy.

For more information, see the Microsoft documentation for your operating system.

Import a Certificate with Mozilla Firefox

You can manually import a certificate with Firefox or configure Firefox to automatically trust certificates in the Windows Certificate Store.

Manual Import

To manually import a certificate with Mozilla Firefox:

Download
  1. Select Options.
  2. Select the Advanced tab.
  3. Select the Certificates tab.
  4. Click View Certificates.
  5. Select the Authorities tab.
  6. Click Import.
  7. Browse to select the certificate file, then click Open.
  8. In the Downloading Certificate dialog box, select the Trust this CA to identify web sites check box.
  9. Click OK.
  10. Restart Firefox.

Use the Windows Certificate Store

To make certificate deployment easier, you can also configure Mozilla Firefox version 49 and higher to use the Windows Certificate Store. For example, if you deploy a certificate through Group Policy to the Windows Certificate Store, Firefox will automatically trust that certificate. For more information about Windows Certificate Store support in Firefox, see the Mozilla Wiki.

To configure Firefox on a single computer to use the Windows Certificate Store:

  1. In the Firefox address bar, type about:config.
  2. If a warning appears, click to continue.
    A list of preferences opens.
  3. Scroll down to find the preference security.enterprise_roots.enabled and make sure it is set to True.
  4. If the preference security.enterprise_roots.enabled does not exist, you must add it:
    1. Right-click anywhere on the preferences list and select New > Boolean.
      The New Boolean Value dialog box opens.
    2. Type security.enterprise_roots.enabled and click OK.
      The Enter Boolean Value dialog box opens.
    3. Select True and click OK.
  5. For the new setting to take effect, toggle the preferences off and on, or restart Firefox.

To configure Firefox on multiple computers to use the Windows Certificate Store:

  1. Create a .cfg file encoded as ANSI with these commands.
    lockPref('security.enterprise_roots.enabled', true);
  2. Create a .js file encoded as ANSI with these commands. The .js file references the .cfg file you created.
    pref('general.config.obscure_value', 0);
    pref('general.config.filename', '[file name].cfg');
  3. Save the .cfg file to the root Firefox folder at:
    • For 64-bit Windows, 32-bit Firefox — C:Program Files (x86)Mozilla Firefox
    • For 64-bit Windows, 64-bit Firefox — C:Program FilesMozilla Firefox
    • For 32-bit Windows — C:Program FilesMozilla Firefox
  4. Save the .js file to the defaultspref folder at C:Program Files (x86)Mozilla Firefoxdefaultspref.

To distribute the .js and .cfg files to Windows computers on your network, you can use Group Policy or a scripted Firefox installation.

To use Group Policy to distribute the files:

  1. In Group Policy Manager, create a new group policy object.
  2. Right-click the object and select Edit.
    The Group Policy Management Editor dialog box opens.
  3. Select Computer Configuration > Preferences > Windows Settings > Files.
  4. Right-click the Files section and select New > File.
  5. Adjacent to the Source File(s) text box, browse to the .cfg file.
  6. Adjacent to the Destination File(s) text box, specify C:Program Files (X86)Mozilla Firefox[file name].cfg for 64-bit Windows or C:Program FilesMozilla Firefox for 32-bit Windows. For 64-bit Windows with 64-bit Firefox, specify C:Program FilesMozilla Firefox. The .cfg file will install on user computers at this location.
  7. Repeat Steps 1—5. Adjacent to the Destination File(s) text box, specify C:Program FilesMozilla Firefox[file name].cfg for 64-bit Windows or C:Program FilesMozilla Firefox for 32-bit Windows. For 64-bit Windows with 64-bit Firefox, specify C:Program FilesMozilla Firefox. The .cfg file will install on user computers at this location.
  8. Repeat Steps 1—4.
  9. Adjacent to the Source File(s) text box, browse to the .js file.
  10. Adjacent to the Destination File(s) text box, specify C:Program Files (X86)Mozilla Firefoxdefaultspref[file name].js for 64-bit Windows or C:Program FilesMozilla Firefoxdefaultspref[file name].js for 32-bit Windows. For 64-bit Windows with 64-bit Firefox, specify C:Program FilesMozilla Firefox. The .js file will install on user computers at this location.
  11. Repeat Steps 1—4.
  12. Adjacent to the Source File(s) text box, browse to the .js file.
  13. Adjacent to the Destination File(s) text box, specify C:Program FilesMozilla Firefoxdefaultspref[file name].js for 64-bit Windows or C:Program FilesMozilla Firefoxdefaultspref[file name].js for 32-bit Windows. For 64-bit Windows with 64-bit Firefox, specify C:Program FilesMozilla Firefox. The .js file will install on user computers at this location.
  14. Click OK.

To perform a scripted Firefox installation, see the Mozilla installation configuration documentation.

Import a Certificate with macOS and Apple Safari

This process allows Safari and other programs or services that use the macOS certificate store to get access to the certificate.

  1. Open the Keychain Access application.
  2. Select the Certificates category.
  3. Click + (the plus icon button) on the lower toolbar, then find and select the certificate.
  4. Select the System keychain, then click Open.
    Or, select the System keychain, then drag-and-drop the certificate file into the list.
  5. Right-click the certificate and select Get Info.
    A certificate information window opens.
  6. Expand the Trust category.
  7. In the When using this certificate drop-down list, select Always Trust.
  8. Close the certificate information window.
  9. Type your administrator password to confirm your changes.
Watchguard firebox ssl client download 32-bit

Import a Certificate with an Apple iOS Device

To import a certificate with an Apple iOS device, such as an iPhone or iPad, you must use a DER format certificate file. For information on how to export a PEM format certificate from Firebox System Manager and convert it to DER format, see Export a Certificate from Your Firebox and Convert Certificate Format.

The certificate file can be distributed to users in several ways, such as email, website download, iOS configuration profile, or installation by the Simple Certificate Enrollment Protocol (SCEP).

If you receive a certificate file by email or website download, tap the certificate to add it to the device. For example, to add a certificate distributed by email:

  1. Open the Mail app.
  2. Open the email that contains the attached certificate.
  3. Tap the attached certificate.
    The Install Profile Dialog opens.
  4. Tap Install.
Watchguard Firebox Ssl Client Download

If a warning message appears, you may safely ignore it at this time and tap Install. This message appears if the iOS device does not trust the signing authority for this certificate.

After you install the certificate, you must enable the certificate in the Certificate Trust Settings if your device has iOS 10.3 or higher:

  1. Select Settings > General > About.
  2. Select Certificate Trust Settings.
  3. In the Enable Full Trust for Root Certificates section, tap the slider for the certificate.
  4. Tap Continue.

Import a Certificate with an Android Device

The instructions to add a certificate to an Android device are different depending on the device manufacturer. These general rules apply:

  • You must have Android v4.3 or higher to add a certificate.
  • Android supports DER-encoded X.509 certificates. Certain devices require the certificates to be saved with a .crt or .cer file extension.

For information on how to export a PEM format certificate from Firebox System Manager and convert it to DER format, see Export a Certificate from Your Firebox and Convert Certificate Format.

Watchguard Firebox Ssl Client Download Mac

If you have a copy of the certificate on your device as an email attachment or file download, some devices allow you to tap the certificate to import it to your device.

  1. Open the email application on your Android device.
  2. Open the email that contains the attached certificate.
  3. Tap the attached certificate.
    The Name the Certificate dialog box opens.
  4. Type a descriptive name for the certificate.
  5. Tap OK.

To import a certificate saved to the internal storage of an Android device:

Watchguard Firebox Ssl Client Download Windows 7

  1. In your Android device settings, go to the security settings where certificates and credentials are stored.
  2. Import the certificate.

Watchguard Firebox Ssl Vpn Client Download

See Also