- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
07-22-2014 04:39 PM
Hi,
I have a decryption profile, assigned to a decryption policy and it seems that the firewall is blocking access to HTTPS sites that actually do not have an expired or compromised certificate.
My decryption profile looks like in the screenshot. If I uncheck the Block sessions with untrusted issuers and Restrict Certificate extensions, it works fine. But we really should have the other two options in place.
Does anybody experiences this issue?
We are running 6.0.3 on a PA-5020.
Thank you
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!