SSL Deep Inspection

Forum|Forum|4 years ago
June 23, 2021
1 reply
2852 views

I have a small office. 5 computers, iPad, iPhones, and a Playstation ;)

I am considering using deep inspection so the UTM features are better able to catch stuff.

How difficult is it to deploy? Just load certificates on everything?

srajeswaran

Staff

It is very easy to deploy. It can work without even loading the certificate, but you will always get a certificate warning.

You may follow https://kb.fortinet.com/kb/documentLink.do?externalID=FD46282 for the exact procedure.

Markus

New Member

On Mobile/iPad/Playstation, you will always have certificate warnings, because you can't import (well, it depends, maybe you can import the CA certificate, but this will warn to). Another "problem" are apps, that use their own integrated encryption, like whatsapp, skype, they will not working with deep inspection, as long as you do not exempt them. URIs with certificate pinning also don't work. As srajeswaran_FTNT mentioned bevor, the deployment is easy, but it will break some things.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded