topic Re: BYOD Decryption in General Topics

BYOD Decryption

menglishbrooks — Mon, 05 Oct 2015 15:56:13 GMT

Has anyone been succesful in using decryption on a network where most computers are not on the domain? I am working at a school where all students are bringing their own devices so we cannot push decryption certificates through group policy.

Thank you

Re: BYOD Decryption

cpainchaud — Mon, 05 Oct 2015 16:44:57 GMT

make students install it (provide procedures for all OS and browsers) or forget about it

Re: BYOD Decryption

pankaku — Mon, 05 Oct 2015 16:53:16 GMT

You have to install the root certificate into all the systems. By default IE,Chrome uses windows certificate store but if the students are using mozilla firefox then in that case they have to install that certificate into the mozilla firefox as well.

Re: BYOD Decryption

LCMember1959 — Tue, 06 Oct 2015 13:02:39 GMT

If you are using a controller-based wireless network then you can use some form of onboarding to push the necessary certificate to all clients.

Re: BYOD Decryption

Amrein — Tue, 28 Jul 2020 07:16:24 GMT

Hello,

I'm a high school teacher in Austin, TX. What is the best way to block Twitter, Facebook and other social media? Can we use GPO to push SSL decryption certificates at our school?

BR, Patrick

Patrick Amrein

My path access via: https://live.paloaltonetworks.com/t5/general-topics/ssl-decryption http://customwritingcompany.com

Re: BYOD Decryption

Chacko42 — Tue, 28 Jul 2020 09:40:18 GMT

If it's the schools network, you can define policies, which need to be accepted by the students (if legal council is fine with it).

So you can make the students install GlobalProtect on their devices and with that you got a) accurate UserIDs and b) you can propagate trusted root certificates to the devices)