Update the GovWifi server certificate

Every 2 years, GovWifi has to renew its server certificate to keep GovWifi as secure as possible.

From the 11 November 2019, users on iOS, MacOS and Windows devices may receive a pop up message on their device asking them to accept the new certificate. Users will have to accept to continue using the GovWifi service. Android users should have the new certificate automatically accepted.

What you need to do to continue using GovWifi

To continue using GovWifi, you must switch to the new certificate when the message prompts you on your device. You must do this for all of your devices which use GovWifi.

Switching to the new certificate on your mobile

  1. If you receive the GovWifi pop up message on your mobile device, select Accept.
  2. Your device will automatically switch to the new certificate and reconnect to GovWifi.
  3. You can continue using GovWifi as normal.

Switching to the new certificate on your desktop or laptop

  1. If you receive the ‘Authenticating to network “GovWifi”’ pop up message on your desktop or laptop device, select Continue.
  2. Your device will automatically switch to the new certificate and reconnect to GovWifi.
  3. You can continue using GovWifi as normal.

What to do if you are unable to connect to GovWifi

If you are unable to connect to GovWifi you can try:

  • re-entering your GovWifi username and password
  • restarting your device
  • rejoining your GovWifi network
  • check the left-hand navigation bar to view your device specific instructions

If you are still experiencing problems, contact your IT support desk.

What to do if you get a Thumbprint/Fingerprint error message

A Thumbprint, also referred to as a Fingerprint, is an ID that is uniquely calculated from a certificate. The Thumbprint is used to identify and validate the certificate, or as a way to manage certificates in devices. The change of server certificate might cause your device to expect a different Thumbprint.

If you get this error message, you should follow these steps.

  1. Depending on the device, select to show the Certificate details.
  2. Check the certificate is called wifi.service.gov.uk.
  3. Check the certificate was issued by GeoTrust RSA CA 2018.
  4. Check that the Thumbprint matches the latest server certificate from 11 November 2019:

    37:CE:B5:7A:3F:38:EB:7C:66:A2:4E:90:BB:11:71:D7:BC:4D:65:1A

  5. Accept the new certificate
  6. You can continue using GovWifi as normal

For more details, use the left-hand navigation bar to view instructions specific to your device.

What to do if you don't have permissions to trust the GovWifi server certificate

If you are using a device managed by your organisation, your permissions might be restricted and you might not be able to trust the new GovWifi certificate. Depending on the device, you will be prompted to trust or add "DigiCert Global Root CA" or "GeoTrust RSA CA 2018". Contact your IT support desk who should be able to accept them for you.

In some cases, your IT support desk might need access to the new certificates. They can download them from these links:

If you need further support

If you have any questions or need more help, contact your IT support desk.