Block invalid SSL certificates
Connect only to sites with a valid certificate. This setting only applies to the web proxy. To configure certificate validation settings for the DPI engine, use Decryption profiles.
Certificate validation is turned on by default in Web proxy. For the DPI engine, a decryption profile must be used.
- Go to PROTECT > Web > General settings.
- Select Block invalid certificates under HTTPS decryption and scanning.
- Click Apply.
Go to SYSTEM > Profiles > Decyption profiles.