ProxySG & Advanced Secure Gateway

Hi,

We wanted to configure SSL interception on bluecoat proxy. Can anyone provide me with steps to follow while configuring SSL interceptions on Bluecoat proxy?

Hi Umesh,

Refer the KB article to configure SSL interception: https://support.symantec.com/en_US/article.TECH241137.html

Hi Umesh,

Please ignore the previous comment. It was commented from a dummy account by mistake.

Refer the KB article to configure SSL interception. This is for explicit proxy: https://support.symantec.com/en_US/article.TECH241137.html

Thanks for this link.

I have one question.

We are using an explicit proxy and now we wanted to configure ssl interception and here in this link is mentioned enable the detect protocol (services-->proxy services) for http traffic but there is no information about do we need to enable detect protocol and intercept for https traffic. 

Please give me idea do we need to enable detect protocol and intercept for https traffic also.

Hi Umesh,

                  There will be two steps in total.

1) Enabling detect protocol on the Explicit proxy listening port (eg: 8080). This will enable the proxy to understand the protocol of the request and then handover the connection to respective backend service.So this will enable the proxy to identify the SSL connections and pass it the backend SSL_Proxy service

2) Now you will need to set a certificate to be used by the SSL_Proxy service to intercept this connection. This can be done via Policy > SSL Intercept Layer (recommended) or via Configuration [tab] > Proxy Settings > SSL Proxy > Issuer Keyring.