Cisco Cisco Web Security Appliance S690 User Guide
Chapter 10 Decryption Policies
Decrypting HTTPS Traffic
10-18
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
Typically, users can view the certificate and use the information in the certificate
to choose whether or not to allow the secure connection with this website. In
to choose whether or not to allow the secure connection with this website. In
, you can view the certificate contents by clicking Examine
Certificate.
shows an example root certificate issued by the appliance.
Figure 10-6
Certificate Issued by Web Security Appliance
Root certificate information either
generated or uploaded in the Web
Security appliance.
generated or uploaded in the Web
Security appliance.
Validity period specified in either
the generated or uploaded root
certificate.
the generated or uploaded root
certificate.
Requested HTTPS server.
You can choose how to handle the root certificates issued by the Web Security
appliance:
appliance:
•
Inform users to accept the root certificate. You can inform the users in your
organization what the new policies are at the company and tell them to accept
the root certificate supplied by the organization as a trusted source.
organization what the new policies are at the company and tell them to accept
the root certificate supplied by the organization as a trusted source.
•
Add the root certificate to client machines. You can add the root certificate
to all client machines on the network as a trusted root certificate authority.
This way, the client applications automatically accept transactions with the
root certificate. To verify you distribute the root certificate the appliance is
to all client machines on the network as a trusted root certificate authority.
This way, the client applications automatically accept transactions with the
root certificate. To verify you distribute the root certificate the appliance is