Hot!SSL Certificate Inspection Only Certificate Warning

Gold Member
  • Total Posts : 164
  • Scores: 4
  • Reward points: 0
  • Joined: 2014/08/07 03:56:56
  • Status: offline
2017/09/22 01:43:55 (permalink) 5.4

SSL Certificate Inspection Only Certificate Warning

Hello Guys,
this is realy annoying. with 5.2 we never had Problems using SSL Inspection Profile "Certificate-Inspection" to be able to block HTTPS Websites and it was working with no Problem.
now with 5.4.6 for every HTTPS Site that is on a blocked category we first get a Certificate Warning Message from FortiGate via HTTPS and therefore first there is a "Certificate Warning" Message.
if you proceed and accepts then you see the Replacement Message from FortiGAte "This Category is blocked"
What has been changed in 5.4 ?
i know we can disable the HTTPS Replacement Message on the Web Filter Profile but then the Connection just get refused and users wont see the reason why the site has been blocked.
Installing FortiGate CA on all Workstations is also not a solution for us.
The Thing is, on 5.2 it worked without Problems.
Do you have any Suggestion how to block https Sites not getting this warning Messages?
Thank you

NSE 8 
NSE 1 - 7

1 Reply Related Threads

    New Member
    • Total Posts : 11
    • Scores: 0
    • Reward points: 0
    • Joined: 2015/07/29 19:44:28
    • Status: offline
    Re: SSL Certificate Inspection Only Certificate Warning 2017/10/12 23:27:51 (permalink)
    This is indeed a problem with us also.
    However, we only get a certificate warning and unable to proceed.
    So, end-users don't know why a page is blocked and thinks that there is probably no internet prompting them to call the desktop support.
    Jump to:
    © 2018 APG vNext Commercial Version 5.5