12-20-2016 01:59 PM
Trying to configure ssl inbound inspection for one of my web sites hosted internally. The IIS server has many sites being served thru host headers. All of the SSL bound sites use the same wildcard certificate *.external-domain-name on this server. I export this cert with key and import into pa.
I make decryption policy to match a specific url in url category for the site I am testing with. When I watch the monitor i see session_end_reason eq decrypt-unsupport-param in session end reason. I am not sure what I am doing wrong.
Wildcard certs not supports for inbound inspection maybe?
Thanks for reading.
