- Products
- Learn
- Local User Groups
- Partners
-
More
Celebrate the New Year
With CheckMates!
Value of Security
Vendor Self-Awareness
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
Mobile Security
Buyer's Guide Out Now
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi Guys,
May I ask for your help on how can we make a 3rd Party certificate to be used on HTTPS Inspection instead of the self signed?
For HTTPS inspection, you need a Certificate Authority not a certificate.
You will not be able to find a 3rd party supplier that will supply you with a CA without paying a huge amount of money as it will allow you to generate your own trusted certificates.
Hi,
yes, you have an option either to create or import certificate. Just make sure:
* your certificate is trusted by clients. Otherwise you'll get warnings for every page you visit.
* you have proper certificate (it is able to issue certificates - subordinate if I correctly remember the name)
Hi,
edit the firewallobject -> select "HTTPS Inspection" and click on the "Import" hyperlink, then follow the wizard.
Keep the points abihsot mentioned in mind and additionally import the certificate with the full chain (root CA etc. included).
For HTTPS inspection, you need a Certificate Authority not a certificate.
You will not be able to find a 3rd party supplier that will supply you with a CA without paying a huge amount of money as it will allow you to generate your own trusted certificates.
It's against the terms of service of all major CAS to use their certificates for HTTPS Inspection purposes.
Use self signed certificate, it´s easy and works fine.
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY