Certificate Authority
Trust pryter.me before you connect
Your device needs to recognise the certificate that secures this VPN. Install it once, and the IKEv2 connection verifies cleanly — no warnings.
pryter.me Root CA
Issued for the pryter.me IKEv2 service
Download the certificate
vpn.pryter.me/cert/ikev2-profie.crt
Finish installing it
- Tap Download the certificate above, then tap Allow when asked to download a profile.
- Open Settings → General → VPN & Device Management, tap the downloaded profile, then Install.
- Go to Settings → General → About → Certificate Trust Settings, and switch on full trust for the pryter.me root.
Don't skip step 3. Installing the profile isn't enough on iOS — the connection keeps failing until full trust is switched on in Certificate Trust Settings.
- Download the certificate, then double-click the .crt file to open Keychain Access.
- Add it to the System keychain if prompted.
- Find pryter.me Root CA, double-click it, expand Trust, and set When using this certificate to Always Trust.
- Download and double-click the .crt file, then choose Install Certificate.
- Select Local Machine and continue (approve the admin prompt).
- Choose Place all certificates in the following store → Trusted Root Certification Authorities, then finish.
- Download the certificate to your device.
- Open Settings and search for Install a certificate (often under Security → Encryption & credentials).
- Choose CA certificate, accept the notice, and pick the downloaded file.
Android shows a warning that a CA can monitor traffic — that's the standard notice for any installed CA. Continue only because this one is yours.
What you're trusting: this installs a public certificate so your device recognises connections signed by the pryter.me CA. It holds no private key and can't see your traffic. Only install a CA from someone you trust.