https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34438#M7242 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>edit the firewallobject -&gt; select "HTTPS Inspection" and click on the "Import" hyperlink, then follow the wizard. <BR />Keep the points abihsot mentioned in mind and additionally import the certificate with the full chain (root CA etc. included).</P></BODY></HTML> Wed, 20 Feb 2019 11:06:59 GMT Benedikt_Weissl 2019-02-20T11:06:59Z https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34436#M7240 <HTML><HEAD></HEAD><BODY><P>Hi Guys,</P><P></P><P>May I ask for your help on how can we make a 3rd Party certificate to be used on HTTPS Inspection instead of the self signed?</P></BODY></HTML> Wed, 20 Feb 2019 03:27:53 GMT https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34436#M7240 Marvin_Castillo 2019-02-20T03:27:53Z https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34437#M7241 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>yes, you have an option either to create or import certificate. Just make sure:</P><P></P><P>* your certificate is trusted by clients. Otherwise you'll get warnings for every page you visit.</P><P>* you have proper certificate (it is able to issue certificates - subordinate if I correctly remember the name)</P></BODY></HTML> Wed, 20 Feb 2019 07:06:41 GMT https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34437#M7241 abihsot__ 2019-02-20T07:06:41Z https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34438#M7242 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>edit the firewallobject -&gt; select "HTTPS Inspection" and click on the "Import" hyperlink, then follow the wizard. <BR />Keep the points abihsot mentioned in mind and additionally import the certificate with the full chain (root CA etc. included).</P></BODY></HTML> Wed, 20 Feb 2019 11:06:59 GMT https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34438#M7242 Benedikt_Weissl 2019-02-20T11:06:59Z https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34439#M7243 <HTML><HEAD></HEAD><BODY><P>For HTTPS inspection, you need a Certificate Authority not a certificate.</P><P>You will not be able to find a 3rd party supplier that will supply you with a CA without paying a huge amount of money as it will allow you to generate your own trusted certificates.</P></BODY></HTML> Wed, 20 Feb 2019 12:53:28 GMT https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34439#M7243 Maarten_Sjouw 2019-02-20T12:53:28Z https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34440#M7244 <HTML><HEAD></HEAD><BODY><P>Use self signed certificate, it´s easy and works fine.</P></BODY></HTML> Thu, 21 Feb 2019 02:19:32 GMT https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34440#M7244 Alessandro_Marr 2019-02-21T02:19:32Z https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34441#M7245 <HTML><HEAD></HEAD><BODY><P>It's against the terms of service of all major CAS to use their certificates for HTTPS Inspection purposes.</P></BODY></HTML> Sat, 23 Feb 2019 04:52:18 GMT https://community.checkpoint.com/t5/General-Topics/Using-3rd-Party-Certificate-for-HTTPS-Inspection/m-p/34441#M7245 PhoneBoy 2019-02-23T04:52:18Z