Allow Exceptions to HTTPS:// Security Protocols

Supported in:

Kiosk Pro Basic, Plus and Enterprise

Define how Kiosk Pro should handle security certificate errors. Exceptions to HTTPS security protocols are only possible when using the WKWebView browser engine. If using the UIWebView browser engine, there is no method to allow exceptions for failed security certificate authentication so loading of a page with a certificate error will always fail.

Default Value

Always Show Prompt

Other Possible Values
  • Automatically (recommended only in restricted environments where all possible exceptions have been reviewed)
  • Never (any page with certificate errors will not load)

Always Show Prompt

When using Always Show Prompt, if a security certificate authentication error occurs, a prompt is shown to the visitor, alerting them to the error and allowing them to continue to view the page or cancel to prevent loading.

This prompt can only be shown every 30 seconds; if the Idle Time Limit is set to less than 30 seconds, the prompt will not be shown immediately.

Automatically

This option allows pages with security certificate errors to load without displaying an alert. As this prevents the exception from being shown to the visitor, it should only be used in restricted environments where all possible exceptions have been reviewed (as in the case of self-signed certificates or certificate errors caused by network level blocking). This mode should never be used for kiosks that allow unrestricted browsing as that could potentially compromise sensitive information entered by visitors.

Never

is the most secure approach and prevents any page with certificate errors from being displayed. If a visitor tries to view a page with certificate errors, they will see the Blocked Request Alert and the page will not be displayed.

Certificate authentication is performed by the underlying WebView browser layer so Kiosk Pro is unable to modify the specific types of errors requiring an exception.


Values for Remote Settings Control & Managed App Configuration

Key kp_promptToAllowHTTPSSecurityExceptionsInWKWebView
Key Type integer
Default Value 0
Possible Values
  • 0 = Always Show Prompt
  • 1 = Automatically (recommended only in restricted environments where all possible exceptions have been reviewed)
  • 2 = Never (any page with certificate errors will not load)

Change Log

  • Added in 8.1 version.

Still stuck? How can we help? How can we help?