.svg)
When activating or using the Enpass app, you may encounter an SSL certificate validation error. This typically occurs in organizations that use intercepting proxies (such as SSL inspection or HTTPS decryption) on their network.
Why does this happen?
Enpass uses certificate pinning as a security measure to ensure the app is communicating directly with Enpass servers without any intermediary tampering. When your organization's network proxy intercepts HTTPS traffic and replaces the server certificate with its own, Enpass detects this mismatch and blocks the connection.
How to fix it
You need to allowlist the following Enpass domains in your proxy so that HTTPS traffic to these endpoints is not intercepted.
Simple approach: Allowlist the wildcard domain:
*.enpass.io
Or allowlist individual URLs:
-
https://license.enpass.io/— License activation and account management -
https://rest.enpass.io/— Enpass API services -
https://favicon.enpass.io/— Website icon retrieval -
https://hub.enpass.io/— Enpass Hub for business features
After updating your proxy configuration, restart the Enpass app and try again.
Note: If your organization has chosen Enpass Hub data residency in Australia, also allowlist
https://hub-au.enpass.io/.
Still having issues?
If you have allowlisted the domains above and are still seeing the error, verify that your proxy is not caching old rules and that the allowlist changes have propagated. If the issue persists, contact Enpass support.