Main Content
Check or install root certificate
The T-Telesec Global Root Class 2 certificate must be available for various network logins (e.g. WiFi) in the certificate store of the respective operating system. It enables your computer to check that you are logging on to the correct server. The root certificate is already installed on most current operating systems.
Windows
1. Press "Windows key + R" and enter certmgr.msc in the search field and select the corresponding entry in the results.
2. Have a look into Trusted Root Certification Authorities → Certificates and Third-party Root Certification Authorities → Certificates.
3. If you find an entry T-Telesec Global Root Class 2 there, check that server authentication is noted in the Intended purposes column. If there is no such entry, you must install the certificate individually.Installing the certificate
1. Start a browser of your choice (e.g. Firefox, Chrome, Microsoft Edge) and open the following link:
https://pki.pca.dfn.de/dfn-ca-global-g2/pub/cacert/rootcert.crt
2. The browser will ask you to download the file "rootcert.crt". Save it in any folder (e.g. Download, Desktop) and double-click on it.
3. A safety warning will appear, click on open and check if the issuer is "T-TeleSec GlobalRoot Class 2".
4. If yes, click on install and follow the Import-Assistant until the message "The import process was successful" appears.
5. The certificate should now be stored in the Windows certificate store.Linux
1. Open the file explorer.
2. Check whether the file "T-TeleSec_GlobalRoot_Class_2.pem" is stored under the path "/etc/ssl/certs/".
3. If you find the file, you can start setting up the WiFi. If not, you will need to install the certificate individually.Installing the certificate
1. Start a browser of your choice (e.g. Firefox, Chrome) and open the following link:
https://pki.pca.dfn.de/dfn-ca-global-g2/pub/cacert/rootcert.crt
2. The browser will ask you to download the file "rootcert.crt". Save it in a folder of your choice (e.g. Downloads, Desktop).
3. Open the command line and enter the following command:
user@linux:~$ sudo mv "Path of rootcert.crt file".crt /usr/local/share/ca-certificates
- If the folder does not yet exist, you can create it with the following command:
user@linux:~$ sudo mkdir /usr/local/share/ca-certificates
4. Now you need to install the certificate using this command:
user@linux:~$ sudo update-ca-certificates
5. The root certificate is now located under "/etc/ssl/certs/"Android
1. Start a browser of your choice (e.g. Chrome) and open the following link:
https://pki.pca.dfn.de/dfn-ca-global-g2/pub/cacert/rootcert.crt
2. Download the certificate and save it in the Downloads folder.
3. Now open Settings → Security & Privacy → Additional security settings → Encryption & credentials → Install certificate → Wi-Fi certificate.
- The menus may differ depending on the device manufacturer or Android version.
4. Tap on the three-dot menu, then navigate to the Downloads folder and select the certificate
5. If necessary, enter a name for the certificate e.g. cert-uni and tap OK.