Allow Exceptions to HTTPS:// Security Protocols
Define how Kiosk Pro should handle security certificate errors. Exceptions to HTTPS security protocols are only possible when using the WKWebView browser engine. If using the UIWebView browser engine, there is no method to allow exceptions for failed security certificate authentication so loading of a page with a certificate error will always fail.
Other Possible Values
- Automatically (recommended only in restricted environments where all possible exceptions have been reviewed)
- Never (any page with certificate errors will not load)
When using Show Prompt, if a security certificate authentication error occurs, a prompt is shown to the visitor, alerting them to the error and allowing them to continue to view the page or cancel to prevent loading.
This prompt can only be shown every 30 seconds; if the Idle Time Limit is set to less than 30 seconds, the prompt will not be shown immediately.
This option allows pages with security certificate errors to load without displaying an alert. As this prevents the exception from being shown to the visitor, it should only be used in restricted environments where all possible exceptions have been reviewed (as in the case of self-signed certificates or certificate errors caused by network level blocking). This mode should never be used for kiosks that allow unrestricted browsing as that could potentially compromise sensitive information entered by visitors.
Never is the most secure approach and prevents any page with certificate errors from being displayed. If a visitor tries to view a page with certificate errors, they will see the Blocked Request Alert and the page will not be displayed.
Certificate authentication is performed by the underlying WebView browser engine so Kiosk Pro is unable to modify the specific types of errors requiring an exception.
Values for Remote Settings Control & Managed App Configuration
- Added in version 8.1