Skip to content


The Linn-Mar Community School District is using a Paloalto filter. In order to connect to the Linn-Mar network and access the internet, a Paloalto security certificate must be installed. Most district owned devices should already have this configuration. However, some of those may have been missed. If you feel as though your Linn-Mar owned device is not set up properly, please open a work order (staff only), including the tag number of the device. Students should have their teacher open any work orders that need to be submitted.

Many people bring their own device, but still wish to connect to our network. This page shows how to get the certificate installed quickly and easily on those devices. Typically, all that is needed is to download the certificate, open it, and follow the onscreen instructions. Nobody is required to install this certificate on their personal devices. These instructions are for those who choose to do so.

For help installing on various devices, please use the directions below. There are directions for iPhone/iPad, Android, Windows, and Chromebooks.

How to install on an iPhone/iPad (iOS)

  1. Download the Palo Alto Certificate using your Safari browser
    The browser does matter! If you use the camera, it should open Safari. Snapchat and other apps might not.
  2. Press Install
  3. Enter passcode for phone
  4. Press Install
  5. Press done to exit the certificate installation
  6. Navigate to Settings -> General -> About -> Certificate Trust Settings (bottom of screen)
  7. Click on the toggle next to Linn-Mar CSD
  8. Press Continue to finish

How to install on a phone or tablet running the Android OS

  1. PLEASE UNDERSTAND that your Android device will need to have a PIN set before you can install any certificate to the device. This is found under Settings -> Security -> Screen Lock
    This is a step which can not be undone once the certificate is installed.
  2. Download the Palo Alto Certificate to your device
    * Some QR code apps will have a built in browser, which might not download the file. Look for and take the option to open this page in a real browser. If nothing happens after the download, look in My Files and click the file
  3. At the Name the certificate screen give the certificate a name (Palo Alto) and press the OK button.
    * Some flavors of Android will offer you a choice at this point between “WI-FI” and “VPN and apps”. You should choose VPN and apps, even if that feels counterintuitive!
  4. You can verify that the certificate is installed by going to Settings->Security->Trusted Credentials->User
    * Your menu may be different. You should be able to search the settings for “security certificates”. You are looking for a way to View Security Certificates. Then, click on User

How to install on a Mac

  1. Download the Palo Alto Certificate using your Safari browser (the browser does matter!)
  2. Navigate to Finder > Applications > Utilities > Keychain Access
  3. Select System in the left-hand column.
  4. Open File > Import Items and import the ‘NAME OF CERTIFICATE’ files into the System keychain

How to install on a Windows device (including FireFox directions)

If you have a Windows PC which is not owned by Linn-Mar, you will need to install the Palo Alto security certificate to use our network. The first step is to download the Palo Alto Certificate and save it locally on your computer (in the Downloads folder by default).

Installing the Certificate

  1. Double click to open the certificate you just downloaded
  2. Click Install Certificate
  3. Choose Local Machine, Next
  4. Click Browse
  5. Choose Trusted Root Certification Authorities
  6. OK
  7. Next
  8. Finish

Mozilla Firefox users

Firefox requires additional security settings before you can use their browser with a certificate

  1. Open Firefox, and type “about:config” in the address bar, then hit enter. Click on “I accept the risk!”.
  2. You should now see a very long list. Ignore that, and type “security.enterprise_roots” in the search bar
  3. Double click on “security.enterprise_roots.enabled”, which should toggle it to True

How to install on a Chromebook (Manually)

Important Note: On a Chromebook, SSL Certificates are applied at the User level. This means that the certificate will need to be reinstalled for each user, if more than one user uses the device.

Installing an SSL Certificate (as a Trusted Root Certification Authority)

  1. Download the Palo Alto Certificate
  2. In the Chrome Browser type chrome://settings in the address bar
  3. Scroll down to HTTP/SSL settings and Click Manage certificates
  4. The Certificate Manager window should appear. Click Authorities
  5. Below the list of the current Certificate Authorities, Click the Import button (you may have to scroll down to see this)
  6. Locate the certificate you downloaded earlier, and click Open
  7. In the Certificate authority window that appears, tick Trust this certificate for identifying websites and Trust this certificate for identifying email users
  8. Click OK
  9. You should now be able to see the certificate in the list of Authorities, which would indicate success
  10. When connecting to any Linn-Mar wireless, look for the Server CA Certificate option, and select Do Not Check

Any Linn-Mar student or faculty member that installs the Paloalto certificate on their own device should be able to connect to the LM Student or LM Faculty wireless network, using the same credentials they use to log onto a district owned PC. If you are a guest in our district, please feel free to connect to our guest network.