FRITZ!Box 4020 Service - Knowledge Base
Downloading your FRITZ!Box certificate and importing it to your computer
Each FRITZ!Box has a unique, self-generated certificate for HTTPS Internet access to the user interface and FTPS access to storage (NAS) contents.
The FRITZ!Box certificate is not known to a certification authority or to the computer's local certificate administration. As a result, the web browser displays a certificate warning when you try to access the FRITZ!Box. The certificate warning only means that the browser cannot verify the authenticity and integrity of the FRITZ!Box. Even if the browser claims that the connection is insecure, opening the FRITZ!Box user interface does not pose a security risk!
You can avoid the certificate warning by downloading the unique certificate generated by the FRITZ!Box itself and importing it to the computer's certificate administration.
Note:The configuration procedure and notes on functions given in this guide refer to the latest FRITZ!OS for your FRITZ!Box.
1 Downloading the certificate
If you only use computers with macOS and use Safari or Google Chrome, then you do not need the certificate generated by the FRITZ!Box. If you are using Windows, Linux, or Mozilla Firefox, you must download the certificate file:
- Click "Internet" in the FRITZ!Box user interface.
- Click "Permit Access" in the "Internet" menu.
- Click the "FRITZ!Box Services" tab.
- Click "Download Certificate" and save the file with the certificate to your computer.
2 Importing the certificate
Import the FRITZ!Box's certificate to the certificate administration of your computer or browser, if the browser you are using has its own certificate store:
Note:If you access the FRITZ!Box over the Internet from different computers, you must import the certificate to all of these computers.
Windows 10 / 8 / 7
Google Chrome, Microsoft Edge, and the Internet Explorer use the certificate administration from Windows. Therefore, import the FRITZ!Box certificate to the Windows certificate administration:
- Open the Windows Control Panel:
- Windows 10: Enter sys in the search box in the Windows taskbar and then select "Control Panel".
- Windows 8: Press the keyboard shortcut Windows key + X and select "Control Panel" from the context menu.
- Windows 7: In Windows, click "Start" and then "Control Panel".
- Select "Category" from the drop-down list "View by:" on the top right ().
- Click "Network and Internet" and then "Internet Options".
- Click on the "Content" tab and then on "Certificates".
- Now the "Certificates" window opens.
- Click the "Trusted Root Certification Authorities" tab in the "Certificates" window.
- Click "Import...".
- Now the "Certificate Import Wizard" window opens.
- Click "Next" in the "Certificate Import Wizard" window.
- Click "Browse" and select the file with the certificate ("boxcert.cer").
- Click "Next", "Next", and then "Finish".
- Now the "Security Warning" window opens.
- Click "Yes" in the "Security Warning" window.
- Click "OK" to close the Certificate Import Wizard.
Google Chrome and Safari use the certificate store of macOS's keychain administration. Therefore, import the FRITZ!Box certificate to the keychain administration:
- Access the FRITZ!Box over the Internet with Safari, for example via myfritz.net.
- Click on "Show Certificate" in the window "Safari can't verify the identity of the website [...]".
- Enable the option "Always trust [...] when connecting to [...]" and click "Continue".
- Enter the password of your macOS user account and click "Update settings".
- Import the certificate to the computer's certificate administration. If the web browser you are using has its own certificate store, import the certificate to it. The manufacturer of the Linux distribution or browser can provide you with information on importing certificates.
Firefox does not use the certificate administration from Windows, macOS, or Linux. Instead, it uses its own certificate store. Therefore, import the FRITZ!Box certificate to Firefox's "Certificate Manager":
- Click the (Open menu) button on the top right of Firefox.
- Click "Settings”.
- Click "Privacy & Security" in the menu on the top left of the screen.
- Click "View Certificates" in the "Security" section.
- Now the "Certificate Manager" window opens.
- Click on the "Authorities" tab in the "Certificate Manager" window.
- Click "Import..." and select the file with the certificate ("boxcert.cer").
- Click "Open".
- Enable the option "Trust this CA to identify web sites" and click "OK".
- Click "OK" to save the settings.