FRITZ!Box 6490 Service - Knowledge Base
Downloading your FRITZ!Box certificate and importing it to your computer
Each FRITZ!Box has a unique, self-generated certificate for HTTPS internet access to the user interface and FTPS access to storage (NAS) contents. Since this certificate is not known to any certification authorities, the web browser displays a certificate warning when accessing the FRITZ!Box via the internet. The warning means that the browser cannot verify the authenticity and integrity of the FRITZ!Box.
To avoid having the browser display the certificate warming, you can configure MyFRITZ! internet access and use a certificate from letsencrypt.org for this purpose. As an alternative, you can also download the unique certificate generated by the FRITZ!Box itself and import it into the computer's certificate administration.
1 Downloading the certificate
If you only use computers with macOS and use Safari or Google Chrome, then you do not need the certificate generated by the FRITZ!Box. If you are using Windows, Linux, or Mozilla Firefox, you must download the certificate file:
- Click "Internet" in the FRITZ!Box user interface.
- Click "Permit Access" in the "Internet" menu.
- Click the "FRITZ!Box Services" tab.
- Click "Download Certificate" and save the file with the certificate to your computer.
2 Importing the certificate
Import the FRITZ!Box's certificate to the certificate administration of your computer or browser, if the browser has its own certificate store.
Note:If you access the FRITZ!Box over the internet from different computers, you must import the certificate to all of these computers.
Windows 10 / 8 / 7
Google Chrome, Microsoft Edge, and the Internet Explorer use the certificate administration from Windows. Therefore, import the FRITZ!Box certificate to the Windows certificate administration:
- Open the Windows Control Panel:
- Windows 10: Enter sys in the search box in the Windows taskbar and then select "Control Panel".
- Windows 8: Press the keyboard shortcut Windows key + X and select "Control Panel" from the context menu.
- Windows 7: In Windows, click "Start" and then "Control Panel".
- Select "Category" from the drop-down list "View by:" on the top right ().
- Click "Network and Internet" and then "Internet Options".
- Click on the "Content" tab and then on "Certificates".
- Now the "Certificates" window opens.
- Click the "Trusted Root Certification Authorities" tab in the "Certificates" window.
- Click "Import...".
- Now the "Certificate Import Wizard" window opens.
- Click "Next" in the "Certificate Import Wizard" window.
- Click "Browse" and select the file with the certificate ("boxcert.cer").
- Click "Next", "Next", and then "Finish".
- Now the "Security Warning" window opens.
- Click "Yes" in the "Security Warning" window.
- Click "OK" to close the Certificate Import Wizard.
Google Chrome and Safari use the certificate store of macOS's keychain administration. Therefore, import the FRITZ!Box certificate to the keychain administration:
- Access the FRITZ!Box over the internet with Safari, for example via myfritz.net.
- Click on "Show Certificate" in the window "Safari can't verify the identity of the website [...]".
- Enable the option "Always trust [...] when connecting to [...]" and click "Continue".
- Enter the password of your macOS user account and click "Update settings".
- Import the certificate to the computer's certificate administration. If the web browser you are using has its own certificate store, import the certificate to it. Refer to the manufacturer of the Linux distribution or browser for information on importing certificates.
Firefox does not use the certificate administration from Windows, macOS, or Linux. Instead, it uses its own certificate store. Therefore, import the FRITZ!Box certificate to Firefox's "Certificate Manager":
- Click the (Open menu) button on the top right of Firefox.
- Click "Settings”.
- Click "Privacy & Security" in the menu on the top left of the screen.
- Click "View Certificates" in the "Security" section.
- Now the "Certificate Manager" window opens.
- Click on the "Authorities" tab in the "Certificate Manager" window.
- Click "Import..." and select the file with the certificate ("boxcert.cer").
- Click "Open".
- Enable the option "Trust this CA to identify websites" and click "OK".
- Click "OK" to save the settings.