Hi, I set the decryption profile to default for my inbound ssl decryption policy. Now the traffic is still logged as ssl over port 443, but the decryption flag is down and the session end reason is n/a. The document you provided was the one i used to make the configuration in the first place, the only step not implemented being the wildfire analysis because i don't need it right now and i want to enable features progressively. As for the certificate chain considerations, i am working in a lab environment so my webserver's certificate is self-signed and generated using openssl. It shows in the panorama management console as a CA and trusted root certificate, the status is valid. Thank you again for your help.
... View more