Since endpoint protection decrypts TLS and inspects payloads would it be ok to turn off TLS inspect in the web proxy? Based on my testing, endpoint TLS inspection is far more reliable. By disabling TLS inspection in our web proxy (SG) we could save administrative overhead.
Hi, Decryption can be done; however, if you need to bypass some domains and URLs, it’s impossible on the endpoint level. It can only be achieved through Sophos UTM or Sophos SG.
Endpoint TLS inspection allows exceptions for domains and IP addresses.