switch windows/mac to use enterprise certs, fix typo in bonjour instructions (#276)

site/source/user-manual/connecting/connecting-lan/lan-browser/lan-ff.rst

@@ -6,36 +6,53 @@ Trusting Embassy CA in Firefox
 
 .. caution:: You will first need to complete :ref:`lan-os` for your device before continuing.
 
-Linux/Mac/Windows
------------------
+.. tabs::
 
-#. Open Firefox and in a new tab select "Settings" from the right-hand hamburger menu:
+    .. group-tab:: Windows/Mac
 
-    .. figure:: /_static/images/tor/os_ff_settings.png
-            :width: 30%
-            :alt: Firefox options screenshot
+        #. Open Firefox and enter ``about:config`` in the URL bar. Accept any warnings that may appear about accessing advanced settings.
 
-#. Select “Privacy and Security” from the left hand navigation menu.
+        #. Search for *security.enterprise_roots.enabled* and double click on *false* so that it turns to *true*:
 
-#. Scroll all the way to the bottom of the page and select “View Certificates”.
+            .. figure:: /_static/images/ssl/browser/enterprise_roots_enabled_true.png
+                :width: 80%
+                :alt: Firefox security settings
 
-    .. figure:: /_static/images/ssl/browser/firefox_security_settings.png
-        :width: 80%
-        :alt: Firefox security settings
+        #. Now restart Firefox and you should now see this symbol indicating a secure connection:
 
-#. Select the "Authorities" tab from the "Certificate Manager".
+            .. figure:: /_static/images/ssl/browser/firefox-https-good.png
+                :width: 80%
+                :alt: Firefox security settings
 
-#. Click "Import" and open the downloaded "Embassy Local Root CA.crt" file on your device.
+    .. group-tab:: Linux
 
-#. When prompted, check "Trust this CA to identity websites" and select “OK”.
+        #. Open Firefox and in a new tab select "Settings" from the right-hand hamburger menu:
 
-    .. figure:: /_static/images/ssl/browser/firefox_view_certs.png
-        :width: 80%
-        :alt: Firefox import cert
+            .. figure:: /_static/images/tor/os_ff_settings.png
+                    :width: 30%
+                    :alt: Firefox options screenshot
 
-#. Ensure the "Embassy Local Root CA" exists under "Start9 Labs".  If it does not appear, you may need to close the Certificates pop-up and re-open to refresh the list. Then click “OK” to save.
+        #. Select “Privacy and Security” from the left hand navigation menu.
 
-#. Open a new tab in Firefox to apply the changes. If this does not work, quit and restart Firefox.
+        #. Scroll all the way to the bottom of the page and select “View Certificates”.
+
+            .. figure:: /_static/images/ssl/browser/firefox_security_settings.png
+                :width: 80%
+                :alt: Firefox security settings
+
+        #. Select the "Authorities" tab from the "Certificate Manager".
+
+        #. Click "Import" and open the downloaded "Embassy Local Root CA.crt" file on your device.
+
+        #. When prompted, check "Trust this CA to identity websites" and select “OK”.
+
+            .. figure:: /_static/images/ssl/browser/firefox_view_certs.png
+                :width: 80%
+                :alt: Firefox import cert
+
+        #. Ensure the "Embassy Local Root CA" exists under "Start9 Labs".  If it does not appear, you may need to close the Certificates pop-up and re-open to refresh the list. Then click “OK” to save.
+
+        #. Open a new tab in Firefox to apply the changes. If this does not work, quit and restart Firefox.
 
 Android
 -------

site/source/user-manual/connecting/connecting-lan/lan-os/lan-windows.rst

@@ -42,7 +42,7 @@ Unfortunately, Windows does not have mDNS support built-in, which is necessary i
 
     Add Certificates to selected snap-ins
 
-#. Select “Computer account” and click “Next. Leave defaulted options on the next screen and click “Finish”.
+#. Select “Computer account” and click “Next". Leave defaulted options on the next screen and click “Finish”.
 
 #. When you return to the “Add or Remove Snap-ins” page, ensure “Certificates (Local Computer)” exists under “Console Root” in the “Selected snap-ins” section, then click “OK”.