Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
PampuTV
New Contributor II

Created on ‎11-26-2021 05:23 AM

FortiGate NGFW - Use Web Category in SSL Inspection & Authentication Policy

Hi there,

 

regarding a FortiGate in NGFW mode:

Anyone else wondering why it is not possible to use web categories in SSL inspection & authentication policies? You are able to us web categories in exemptions of the SSL/SSH profiles.

The most vendors I am used to (PAN, Cisco) offer this option. 

Is there a way to do this or is there anything planed for the future releases? I am already on 7.0.2.

 

Thanks together.


Kind regards

Dominik

FortiGate

Labels:
1107
1 REPLY 1
AEK
SuperUser
SuperUser

Created on ‎05-19-2022 01:27 PM

I don't think I understand well you question, but if you intend to exempt or force SSH inspection for some categories then you should do it in your firewall policies, i.e: you create a firewall policy with SSH inspection enabled and with some web categories, and another FW policy for other web categories and just disable SSL inspection for it.

AEK
AEK
678
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.