Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
the_rock
Legend
Legend

Https inspection tip

Ola girls and boys,

Happy Friday 🙂

Figured would sare this tip, as I see people asking me this constantly. So, once ssl inspection is configured and you can refer to my lab guide below, if you are using self generated certs in the lab, you need to export as per below screenshot and add the certs in trusted root store on the machine you are testing, along with actual https inspection cert you export from the gateway properties, so does not show site is not secure when its blocked. In layman's terms, as they say, whole certficate chain has to be trusted.

Best,

Andy

 

https://community.checkpoint.com/t5/Security-Gateways/Https-inspection-lab-guide/m-p/214429#M40929

 

Screenshot_1.png

 

 

MrBeanThumbsUpGIF.gif

0 Kudos
2 Replies
CaseyB
Advisor

In reference to the block page, where would you change the certificate used for that?

Based on the name that I see, it would be my cluster IPsec VPN certificate, which would effect my certificate VPN tunnels.

Edit - Oh, I see it under the UserCheck section. Nevermind!

the_rock
Legend
Legend

Thats right.

Andy

 

Screenshot_1.png

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events