Updating Zscaler Certificates
This article will walk through the process of updating the Zscaler Certificates that come pre-loaded on the router firmware. The article will walk through removing the original Zscaler Certificates, uploading the new ones from the .p12 file downloaded below, and referencing the new certificate in the Zscaler Internet Security using a TLS Tunnel. The configuration below will outline the steps for ECM, but this can also be performed on the router locally.
IMPORTANT NOTE: When the Zscaler functionality is enabled within a Cradleponit router, the Cradlepoint will modify the EDNS portion of the packets in compliance with RFC 6891 in order to allow Zscaler to apply their filtering service to the each LAN behind the Cradleponit. Currently, we have seen some very specific servers lack the ability to route packets when a packet's EDNS field has been modified. Please make sure your server can handle this type of traffic before purchasing the full product.
2016 CP Zscaler.p12
Published Date: 12/10/2014