Cisco Cisco Web Security Appliance S170 Guida Utente

FTP over HTTP is supported in Cloud Connector mode.

The Cloud Connector does not support decryption. It passes HTTPS traffic without decrypting.

Because the Cloud Connector does not support decryption, AsyncOS generally does not have access to 
information in the client headers of HTTPS traffic. Therefore, AsyncOS generally cannot enforce 
routing policies that rely on information in encrypted headers. This is always the case for transparent 
HTTPS transactions. For example, for transparent HTTPS transactions, AsyncOS does not have access 
to the port number in the HTTPS client header and therefore it cannot match a routing policy based on 
port number. In this case, AsyncOS uses the default routing policy.

There are two exceptions for explicit HTTPS transactions. AsyncOS has access to the following 
information for explicit HTTPS transactions:

URL

Destination port number

For explicit HTTPS transactions, it is possible to match a routing policy based on URL or port number.

You can integrate the Cloud Connector with external Data Loss Prevention servers through Network > 
External DLP Servers. 

 

To view the configured group names, user names, and IP addresses, go to whoami.scansafe.net. 

The Cloud Connector Logs provides useful information for troubleshooting problems with the Cloud 
Connector, for example, authenticated users and groups, the Cloud header, and the authorization key. 

Navigate to System Administration > Log Subscriptions.

Select Cloud Connector Logs from the Log Type menu.

Type a name in the Log Name field.

Set the log level.

Submit and Commit your changes.