Solved: Using 3rd Party Certificate for HTTPS Inspection

Marvin_Castillo · ‎2019-02-19

Hi Guys,

May I ask for your help on how can we make a 3rd Party certificate to be used on HTTPS Inspection instead of the self signed?

Maarten_Sjouw · ‎2019-02-20

For HTTPS inspection, you need a Certificate Authority not a certificate.

You will not be able to find a 3rd party supplier that will supply you with a CA without paying a huge amount of money as it will allow you to generate your own trusted certificates.

Regards, Maarten

View solution in original post

abihsot__ · ‎2019-02-19

Hi,

yes, you have an option either to create or import certificate. Just make sure:

* your certificate is trusted by clients. Otherwise you'll get warnings for every page you visit.

* you have proper certificate (it is able to issue certificates - subordinate if I correctly remember the name)

Benedikt_Weissl · ‎2019-02-20

Hi,

edit the firewallobject -> select "HTTPS Inspection" and click on the "Import" hyperlink, then follow the wizard.
Keep the points abihsot mentioned in mind and additionally import the certificate with the full chain (root CA etc. included).

Maarten_Sjouw · ‎2019-02-20

For HTTPS inspection, you need a Certificate Authority not a certificate.

You will not be able to find a 3rd party supplier that will supply you with a CA without paying a huge amount of money as it will allow you to generate your own trusted certificates.

Regards, Maarten

PhoneBoy · ‎2019-02-22

It's against the terms of service of all major CAS to use their certificates for HTTPS Inspection purposes.

Alessandro_Marr · ‎2019-02-20

Use self signed certificate, it´s easy and works fine.

Using 3rd Party Certificate for HTTPS Inspection

Skyline - a new monitoring solution for Check Poin...

Showing bash instead of name as Expert (When openn...

Brainstorming for a new DLP platform – we want to ...

Infected host on guest network

posts get marked as spam