Explorer

Question

SSL Deep Inspection not working with Chrome and Edge browsers and web filtering

Forum|Forum|1 year ago
November 22, 2024
2 replies
2667 views

I've configured a policy with SSL Deep Inspection for my company and installed the Fortigate CA certificate on our devices in order to now be shown the certificate warning. However (on both mac and windows devices) when using Firefox it does seem to work correctly and the certificate shown by the browser is the Fortigate's, though when using either Chrome or Edge the certificates shown in the browser.

Screenshot 2024-11-22 152455.png

I have even a problem with web filtering I'm blocking social media and still have access to all social media

Did anyone have an idea what is the problem?

Thank you

ebilcari

Staff

The difference is that Firefox by default uses it's own trusted store, Edge and Chrome will use the trust store of the OS. Try to import the FGT certificate to the trusted root store of the OS.

Try to block the social media by creating an Application Control policy.

Emirjon

AHJARRAuthor

Explorer

Hello @ebilcari Thank you for reply

The Application Control policy worked just fine. What do you mean by import the FGT certificate to the trusted root store of the OS. OS?

Thanks

ebilcari

Staff

I was referring to the Trusted root store of the operating system (Mac or Win), for windows the FGT certificate should be imported here:

cert trust store.PNG

For MacOS should be similar.

Emirjon

ametkola

Staff

Hello @AHJARR ,

If the web filter is not able to block the expected traffic using Chrome or Microsoft Edge. You can go through the article >> https://community.fortinet.com/t5/FortiGate/Technical-Tip-Web-filter-is-not-blocking-websites-on-Google/ta-p/297956

to perform the steps as recommended and check again the behaviour.

Regards,

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded