search cancel

When using the SSL Decryption proxy for SWG, the cert presented is a SHA1 cert

book

Article ID: 174654

calendar_today

Updated On:

Products

Web Gateway

Issue/Introduction

The Symantec Web Gateway SSL Decryption proxy, running on port 8443 by default, always presents the intercepted cert as a SHA1 cert with no currently supported ciphers.

Resolution

Since the Symantec Web Gateway went EOL, SHA1 certificates are no longer trusted by current releases of majors web browsers (Firefox, Chrome, Safari). There is no solution at this time since the Web Gateway product is End of Life and will no longer be supported after December, 7th, 2019.