Skip to main content
  • EN

AD_4nXeMX0ZQ9yONSDOUcDmmsL8g3LmU_zGbkfEWXIp8KSeIN5-l54MSYxoKd32Awi5aaNmEwAbOYNvCCxRfasNI12JIk6Wb7ZYGrWhynhgIg4FsRuBwJ521ObL2I06ghaYVbPzp4JrIyMRljB4jwKeJeg?key=Uk7tRPxk6eBYgwdGGRpusXDu

Netskope Global Technical Success (GTS)

How to add Netskope certificate in Windows Postman desktop for SSL certificate verification

 

Netskope Cloud Version - 123.0.4.158

 

Objective

Explain how to add Netskope certificate in Windows Postman desktop for SSL certificate verification

 

Prerequisite

Netskope SWG license is required

 

Context

REST APIs are essential in development as they enable seamless communication between applications, promote integration, and support scalability. However, protecting API data is crucial since they often handle sensitive information. Without proper security measures, the risk of information leaking is highly present. Securing APIs ensures data integrity, user trust, and compliance with regulations.

 

Do You Know?

Postman can be used in two ways: 

  • Desktop application: Provides an API platform for building and using APIs.
  • Web application: The web version of Postman provides instant access to Postman without having to install a desktop app

 

Configuration

  • Create a combined certificate bundle:

 

AD_4nXcaUf_TKTWpCa3Say26ixe0mJRTVw4M4PQl5Da2AYjrFL5sqZnD0YbW-djKtTt2Xa5w-42efDHi8a9ecK1SIdsj4njTy_Nb-jHMpORNG5zaT6lMkAqXniei_uhHOogAREhmaYRmxbbwQOHMUbaRrM4?key=Uk7tRPxk6eBYgwdGGRpusXDu

 

  • On Windows, open a PowerShell terminal and execute the script:

 

AD_4nXfNabQaA1HVu9Sn-g906bUhde6qkEZCpG9qPrgE34zYCEluTcHgl3J6qT5rHxIof79jmw1SDJqeI5zWWWfj3xdNtzROFz_vvB82jBO0sCom_9UMpGcQZve-XBlTU8nRrABFSzdqA-l6sqbiWAqPy8g?key=Uk7tRPxk6eBYgwdGGRpusXDu

 

  • Import the certificate in postman:
    • Open postman, go to: postman > settings > certificates
    • Toggle on the CA certificate option
    • Click on select file

 

AD_4nXcy0WUmRGnn4jcTXVMs93yyHBr1b_g6bd0OzEzyDEJUw6DFfCfy2bGXXSjcIm9EGaXyU6foHxMK-wfozRUSbbo_ih6bHkMONY1M4xxXsnZ7gZLcrJGFR9Vq9ebtAw6S2UULDzTaSLAq9QgNd-msRHc?key=Uk7tRPxk6eBYgwdGGRpusXDu

 

  • Browse to C:\ProgramData\netskope\stagent\data and select the nscacert_combined.pem certificate

 

AD_4nXe6eeu3i3WuGYnYXiMaVjFML4Iti1NJlP9ZYZ7lFmRdl0ranwACAGgvAC6raB2-cQ8JBWaG2Opb6831kDy62NpIn5aaICIkuW_ykqMxrCgT-eMp4E1e3r58N8QYvGn0S2lfnH2UShi-J6jp2hIVTmo?key=Uk7tRPxk6eBYgwdGGRpusXDu

 

  • Go to: postman > settings > certificates > General and enable SSL certificate verification

 

AD_4nXexp1Z_Xkmisj2IOJ9FFQx7ct6fDGg5dh-sftRF6B7crZ7qpIF9cDViM-HHHF-JjiTTWklIzgGdxMc0OO64rkDGWBA8i9mV1uzoA3A5InrxLwWyiqmAQ8NkiBi15dcxD8Jb6vsKgHAS2NdZFh6h_w?key=Uk7tRPxk6eBYgwdGGRpusXDu

 

Verification

Using postman without SSL verification and without importing Netskope tenant certificate will trigger an SSL alert:

AD_4nXfGMIhe4YKATshkd5g197LfDdHUwl3jtsfbzqw8GqttChsinu_823Qn5Adq9ZBjbM4JnAu6Y-HIPWanFl-C1OPz19IcWF1x8mm-7kTfNIU3bncF0w3iIzrHkdmdgMZia63r3xgf-2C3l9iYBfcmLZo?key=Uk7tRPxk6eBYgwdGGRpusXDu

Enabling SSL verification without importing Netskope tenant certificate will not allow API connections:

AD_4nXc0VykeHnJ4JFre0YXut4-pWL8LJdSBOAl0DuVXzmowNrUFqj4qKrHJM_YA5HrPSQ9l3zrvFOHOI2FEm3xxpkvQaZpdMl9p9NkNswtlaezWzr0KUKY3912xx8kY-LBTF8Ix5W9CE5HZ9-lJkF5uCy8?key=Uk7tRPxk6eBYgwdGGRpusXDu

Importing the Netskope tenant certificate and enabling SSL verification, will allow a secure and trackable SSL API connection:

AD_4nXfGuC3uvrqvdni1588xXIyBsLPEEho-jgovQAnui5RlBrgq5Zp53N9hNSnGuH3xW1WUXZdI3R1zhGlpXKfvHV4PxSBf0L-jGzNI_b-N6IHe4g-Fnbl2yHttBsn4Impqa35pVtmpuW1eu__TnJFYng?key=Uk7tRPxk6eBYgwdGGRpusXDu

 

Terms and Conditions

  • All documented information undergoes testing and verification to ensure accuracy.
  • In the future, it is possible that the application's functionality may be altered by the vendor. If any such changes are brought to our attention, we will promptly update the documentation to reflect them.

 

Notes

  • This article is authored by Netskope Global Technical Success (GTS).
  • For any further inquiries related to this article, please contact Netskope GTS by submitting a support case with 'Case Type – How To Questions'.

 

Be the first to reply!

Badges Winner

Show all badges

Not finding what you're looking for?

Don't be shy and let us know about your challenge.

Ask your question here!
Terms & ConditionsCookie settings