Add an HTTPS inspection rule
|
For more information, see Adding an HTTPS Inspection Rule.
|
Check an HTTPS inspection rule
|
|
Configure an HTTPS inspection rule
|
-
To change the basic information about an HTTPS inspection rule, click in the Action
column.
-
To duplicate an HTTPS inspection rule, click in the Action column. This provides a
convenient way of adding a new inspection rule with settings similar to an existing
rule.
-
To delete an HTTPS inspection rule from Trend Vision One, click in the Action
column .
To delete more than one HTTPS inspection rule, select the rules and click
Delete in the upper left.
|
Configure a default CA certificate for the Internet Acces Cloud or On-Premises Gateway to
decrypt HTTPS traffic
|
-
Click the Settings gear icon in the upper right.
-
Determine and configure the default CA certificate that automatically applies to HTTPS
inspection rules.
-
Built-in CA certificate provided by Internet Access: Download the certificate from the
console and deploy it to the browsers of your users.
Note:
-
The built-in CA certificate is not signed by a trusted CA on the internet. To avoid
certificate warnings on browsers when users access HTTPS websites, make sure that you
deploy the built-in CA certificate to the supported browsers.
-
Internet Access provides different built-in certificates for the cloud gateway and
on-premises gateways.
-
Your own CA certificate: Cross-sign your organization's CA certificate and upload the cross-signed
certificate to the console.
To reset the default certificate, click Reset to Built-in
Certificate.
-
Click Save.
You can choose to use another CA certificate when configuring
an HTTPS inspection rule.
|
Pass HTTPS requests to web servers when decryption fails
|
Select whether to allow your users to access HTTPS content when the Internet Access
Gateway fails to decrypt HTTPS traffic for some reason.
-
Click the Settings gear icon in the upper right.
-
On the Bypass Mode tab, click the toggle under Pass
HTTPS requests to web servers when decryption fails to enable this
feature.
-
Click Save.
|