- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
07-27-2017 01:31 AM - edited 07-27-2017 01:35 AM
Hello,
I've been having a problem with Windows Updates when SSL Decrypt is turned on and I'm wondering if anyone else had to add these "new" Microsoft URL's to the decryption exclusion list. My firewall is on version 8.0.3 and my Windows version is Windows 10 Enterprise 1703 (Build 15063.483). I'm not sure what update package includes SSL Decryption Exclusions but my App & Threats version is 718-4138. All the predefined exclusions are enabled in Device > Certificate Management > SSL Decryption Exclusion
Added URL's:
*.do.dsp.mp.microsoft.com
*.delivery.mp.microsoft.com
Once I added these two URL's to the exclusion list Windows Updates was able to check-in to Microsoft's servers, download the updates, and install them successfully. Without these exclusions Windows Updates would say there are no updates available. I'm still doing testing to see if these two URL's are the only ones that need to be excluded in addition to the predefined ones.
10-31-2017 01:20 PM
I had to add these exclusions as well for Windows Updates and Windows Defender Definition Updates to be downloaded to a Windows PC.
07-23-2019 09:19 AM
did these ever get added to their list for palo? I just ran into this problem today.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!