Support Center > Search Results > SecureKnowledge Details
Personal Certificate not recognized when On-device Network Protection (ONP) is enabled Technical Level
  • Web Pages that require Personal Certificate are blocked when ONP is enabled.


ONP uses an ONP certificate only for SSL inspection.

The use of Client Certificates is a rare requirement on SSL websites.

ONP does not currently support the use of Client Certificates for the SSL option.


As a workaround you can exclude domains from SSL inspection or ONP service in general.

Important Note: Use this step at your own risk. Bypassing the ONP inspection may cause a security risk in case the domain is not trusted.

To exclude ONP:

  1. Log into the portal
  2. Navigate to Policy >On-Device Network protection > Whitelisted Locations
  3. Add the domain to the Whitelist

To exclude from SSL inspection only:

  1. Log into portal
  2. Navigate to Policy> WIFI Network > SSL Certificates Whitelist. 
  3. Add domain to the Whitelist
This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.

Give us Feedback
Please rate this document