Create an HTTPS inspection rule to decrypt content of specified URL categories, and
apply the rule to selected locations.
Go to .
Click the HTTPS Inspection tab.
Specify a Rule name and a
Automatically activate the HTTPS inspection rule by enabling the
Configure Locations by selecting one of the
All locations: The rule affects users from all
gateways, IP addresses, and geographic locations.
Selected locations: The rule only affects users
located at specified corporate network locations or public/home network
locations with specified IP addresses or geographic regions.
For more information, see Internet Access Gateways and Corporate Network Locations.
Select the URLs that the rule applies to.
(Optional) Click Add Custom URL Category to specify
new Custom URL Categories.
(Optional) Click Manage Inspection Exceptions to exclude
HTTPS requests towards certain domains from being inspected by the Internet
For more information, see Inspection Exceptions.
Click the Certificate tab.
The default CA certificate configured for the Internet Access Cloud and
On-Premises Gateway on the Manage Default Certificate
screen automatically loads.
(Optional) If you want to use another CA certificate in the current rule,
perform the following steps:
Click Custom certificate under the desired
Cross-sign your CA certificate with the CSR file specific
for the gateway type.
Click Upload Custom Certificate and upload the
cross-signed CA certificate to the console.