Create a TLS/SSL interception rule
search cancel

Create a TLS/SSL interception rule

book

Article ID: 175853

calendar_today

Updated On:

Products

Cloud Secure Web Gateway - Cloud SWG

Issue/Introduction

Need to create an TLS/SSL rule to bypass or intercept traffic inspection for a certain site.

Environment

Cloud Secure Web Gateway (formerly Web Security Service - WSS)

Resolution

In order to configure a TLS interception policy, you need to:

  1. Login to Cloud Secure Web Gateway portal account.
  2. Go to Policy > TLS/SSL Interception > Expand TLS/SSL Interception Policy
  3. Click on Add Rule. There you configure the desired sources and destinations and select a verdict

The available options can be customized during the rule creation process

    • Sources: Define policy that instructs the Web Security Service to not intercept SSL traffic from these sources. The portal enables you to select from previously defined lists or other elements as defined in your network.
    • Destinations: Define policy that instructs the Web Security Service to not intercept SSL traffic to these destinations. The portal enables you to select from previously defined lists or other elements as defined in your network.
    • Verdict:
      • To intercept traffic for your defined sources and/or destinations, click Intercept.
      • To exempt traffic for your defined sources and/or destinations, click Do Not Intercept.

‚Äč

       4. Click on Add Rule.
       5. Click Activate once the rule is created to add the rule.

Attachments