- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
SSL deep inspection client-cert-request
I have an SSL inspection profile set to deep-inspection.
What does this option actually do to the SSL handshake? And will the Fortigate still be able to inspect the traffic?
"set client-cert-request bypass"
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi
By default, those SSL sessions using "client-certificates" bypass the SSL inspection.
You could also control that using inspect or block the traffic
regards
/ Abel
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi
By default, those SSL sessions using "client-certificates" bypass the SSL inspection.
You could also control that using inspect or block the traffic
regards
/ Abel
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi :) Okay, I have changed the SSL inspection on HTTPS from 443 to all ports, and this also disabled the bypass setting for client-certificates. I see I can change it in the CLI under "config ssl".
Thanks!