SSL Inspection Policy
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|270
SSL Inspection Policy
SSL Inspection
The Access Policy view > SSL Inspection section > Policy page lets you enable and
configure SSL inspection. When you turn on this setting, you allow different Software Blades
that support SSL inspection to inspect traffic that is encrypted by the Secure Sockets Layer
(SSL) protocol. To allow the gateway to inspect the secured connections, all hosts behind the
gateway must install the gateway CA certificate.
Software Blades that support SSL traffic inspection:
n
Application & URL Filtering
n
IPS
n
Anti-Virus
n
Anti-Bot
n
Threat Emulation
Important - You cannot use Smart Accel and SSL Inspection at the same time.
Deploying SSL Inspection
To deploy SSL inspection:
1. Select SSL Traffic Inspection.
2. Click Download CA Certificate to download the gateway's internal CA certificate.
Note - The certificate is available for all users on the gateway. You do not need
administrator credentials. If you do not have administrator credentials, connect
from an internal or wireless network to http://my.firewall/ica or
https://<IP_Address_of_Appliance>/ica.
You must install this certificate on every client behind the gateway.
To Next Page
Loading...
