GSuite apps not decrypted when using Chrome

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

GSuite apps not decrypted when using Chrome

L0 Member

I have seen some older posts with no updates on this very subject so I thought I would start a new thread.  I am testing SSL decryption from a couple of workstations and have almost all of the traffic being successfully decrypted.  We are a Google suite user with it being our email provider with our own domain.  I am on a mac and when using Chrome to access any of the GSuite apps, it is not being decrypted.  The cert is showing up as a standard Google Trust Services issued cert instead of my Palo Alto issued cert.  

I have blocked all QUIC traffic at the firewall per the Palo Alto published best practices.  I have a security rule with any as the source, QUIC as the application and services as Application Default.  Just to make sure something wasn't slipping past that rule I added another this morning blocking all udp traffic over 80 & 443 to no avail.  The logs show tons of blocked QUIC traffic from my workstation.  When I log into any of the GSuite apps from Safari, it is decrypted as expected.

Any suggestions?

1 REPLY 1

Cyber Elite
Cyber Elite

Have you checked the Decryption log (monitor > Logs > Decryption) to see if it's being bypassed or failing?

Tom Piens
PANgurus - Strata specialist; config reviews, policy optimization
  • 1153 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!