Learn how to perform SSL interception using a Microsoft PKI infrastructure in an Explicit proxy environment.
Note: If the proxy is configured to have a different CCL than the default one of "<All CA Certificates>" (found under WebUI > Configuration > Proxy Settings > SSL Proxy), also add the certificate signed by the PKI for the proxy to the selected CCL. This ensures that the proxy will provide the new certificate, along with the emulated certificates to the clients.
You can now run a test using a computer that is a member of the domain of which the Microsoft Certificate Server is also a member.
To do this, check the certificate that ProxySG is providing to the browser. The Common Name (CN) should match what you used when creating the CSR.