https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293039#M77479 <P>Hi,</P><P>When you say "<STRONG>First page</STRONG><SPAN>, IE = Website’s security certificate warning page with options to continue (or on Chrome advanced and proceed to continue); then after we click the Continue button", where does this cert come from ??</SPAN></P><P><SPAN>Is it yours ?? If it's yours, mean you are decrypted then you don't match your "no-decrypt rule"</SPAN></P><P><SPAN>If not, mean someone else make decryption. Look in the cert.</SPAN></P><P>&nbsp;</P><P><SPAN>Rgds</SPAN></P><P>&nbsp;</P><P><SPAN>V.</SPAN></P> Tue, 15 Oct 2019 10:06:27 GMT VinceM 2019-10-15T10:06:27Z https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293005#M77472 <P>We have a policy for public wifi subnet set to</P><UL><LI>ACTION to NO DECRYPT,</LI><LI>Set TYPE=ssl-forward-proxy,&nbsp;</LI><LI>DECRYPTION PROFILE = NONE</LI></UL><P>&nbsp;When any public device (i.e laptop) try to open a HTTPS website that prohibited by our organization URL policy.</P><P>For example HTTPS’s porn sites.</P><P>&nbsp;</P><P>The browser will come up with the Warning page</P><UL><LI><STRONG>First page</STRONG>, IE = Website’s security certificate warning page with options to continue (or on Chrome advanced and proceed to continue); then after we click the Continue button</LI><LI><STRONG>Second page</STRONG>, The organization <STRONG>URL POLICY PAGE BLOCKED</STRONG></LI></UL><P>Is there any work around solution to avoid this <STRONG>First</STRONG> website security warning page that come up on a public device?</P><P>&nbsp;</P><P>Thanks in advance</P><P>Kind Regards</P><P>Rohit.</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 15 Oct 2019 06:15:34 GMT https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293005#M77472 RMangotra 2019-10-15T06:15:34Z https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293039#M77479 <P>Hi,</P><P>When you say "<STRONG>First page</STRONG><SPAN>, IE = Website’s security certificate warning page with options to continue (or on Chrome advanced and proceed to continue); then after we click the Continue button", where does this cert come from ??</SPAN></P><P><SPAN>Is it yours ?? If it's yours, mean you are decrypted then you don't match your "no-decrypt rule"</SPAN></P><P><SPAN>If not, mean someone else make decryption. Look in the cert.</SPAN></P><P>&nbsp;</P><P><SPAN>Rgds</SPAN></P><P>&nbsp;</P><P><SPAN>V.</SPAN></P> Tue, 15 Oct 2019 10:06:27 GMT https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293039#M77479 VinceM 2019-10-15T10:06:27Z https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293047#M77485 <P>Hi Vince,</P><P>&nbsp;</P><P>Thanks for your reply.</P><P>The IE browser is on PUBLIC LAPTOP connected to our PUBLIC WiFi Service and when the user clicks on 'CONTINUE' button on their IE browser then they are getting the error that I mentioned earlier.</P><P>Please let me know if you need more information.</P><P>&nbsp;</P><P>Kind Regards</P><P>Rohit.</P> Tue, 15 Oct 2019 10:40:22 GMT https://live.paloaltonetworks.com/t5/general-topics/next-gen-firewall-public-wifi-browser-warning-issue/m-p/293047#M77485 RMangotra 2019-10-15T10:40:22Z