Configuring policies for SSL Deep Inspection
To employ SSL Deep Inspection, you must enable it and you must be running an SSL proxy. After you enable SSL Deep Inspection, configure a policy that specifies the range of computers and URL categories to which SSL Deep Inspection applies. You must enable the content filter module to enable SSL Deep Inspection by URL category.
See Configuring the Symantec Web Gateway proxy for SSL Deep Inspection.
See Enabling URL filtering, Internet program monitoring, and other features.
To configure policies for SSL Deep Inspection
Specify the policy name and the range of computers to include in the policy.
See Specifying computers or users for policies.
Continuing on the page, locate SSL Deep Inspection.
If the content filter module is enabled, configure the Content Filter Categories.
For the computers in this category, inspect SSL-encrypted network traffic for the URL category.
For the computers in this category, ignore SSL-encrypted network traffic for the URL category. Do not record the activity that is related to SSL Deep Inspection for reports.
If the content filter module is not enabled, the Content Filter Categories and SSL Intercept Exceptions are not displayed. Choose a default action for SSL encrypted traffic.
Under SSL Intercept Exceptions you can optionally add domain names or IP addresses for which you want to intercept or ignore SSL traffic.
On the main page, click .