For advanced users who need full control over proxy configuration, you can start the local proxy manually. See the PxProxy documentation for detailed instructions.
Company proxies, like Zscalar, use deep package inspection to analyze the network traffic. Such proxies are adding self-signed certificates to the HTTPS request to break up the TLS connection.This can result in the following error messages:
Copy
Ask AI
RequestError: self signed certificate
or
Copy
Ask AI
RequestError: unable to verify the first certificate
You can add a self-signed certificate as extra CA Certs to solve this problem as detailed in the next section.
Add Self-Signed Certificate as Extra CA Certs (RECOMMENDED)
The following step-by-step instructions will show you how to add the correct certificate as extra CA Certs.
Open the certificate viewer in your browser.Chrome: Depending on your operating system there is a Lock-icon left of your browser bar that opens the certificate viewer directly or another icon that opens a Site Information menu where you have to select Connection is Secure -> Certificate is ValidFirefox: Click the Lock-icon left of your browser bar. click on Connection Secure -> More Information. Select the tab Security. Click View Certificate.
Chrome: Open the Details tab.Firefox: Select the GTS Root R1 certificate.
Chrome: Select the Certificate GTS Root R1 and click Export… on the bottom right.Firefox: Under Miscellaneous, you can download the certificate.
Save it somewhere you can find it.
Windows Chrome: Download the certificate in the three steps marked inside the picture above.macOS/Unix Chrome: Open the certificate viewer step 1.macOS/Unix Chrome: Open the certificate viewer step 2.macOS/Unix Chrome: Open the certificate viewer step 3.Use AskUI-SetSettings -ServerIdentityCertificate reference to load the certificate into the necessary places of your system.Additional information:
If AskUI is blocked by your firewall, ensure the required domains are whitelisted. See the network requirements in our Installation guide for the complete list of domains that need to be accessible.