Thread Info
  • State Not Answered
  • Replies 5 replies
  • Subscribers 3 subscribers
  • Views 777 views
  • Users 0 members are here
Options
Suggested

Allow Certificate - suddenly needed - then secure connection failures problem

Brian1941

All of a sudden, today after booting, I received a notification that I needed to trust the certificate for decryption.  I allowed the trust.  SSL/TLS Decryption is and has been disabled in the Policy. Now, everything I try to connect to in Safari, Chrome, Firefox, even Endpoint communications are failing as can't make a secure connection to the website error.  I've looked at all certificates in Keychain Access and they are all trusted.  The only way to get around this that I've found is to connect through a VPN bypassing the XG firewall.  

I'm on Sonoma 14.2.1 (23C71) on a MacBook Pro M3.  The Endpoint is 10.5.1. Everything in Self Help is green.

Any ideas on the cause and solution?

Thanks.



tags
[edited by: Brian1941 at 5:28 PM (GMT -8) on 20 Jan 2024]
Parents
  • 0

    I think I know what's happening.  This started when after I was in Central, where I went into the Endpoint settings.  I have the policy set to not perform SSL/TLS Decryption.  I went into the settings for that where you can select categories to not decrypt, Banking, Health, etc.  I toggled them on, saved, toggled them off, saved.  I still have the decryption disabled, but it looks like the Endpoints on my three computers all started doing the Endpoint decryption.  I removed the computers from the group I have in the EAP, and so far, it looks like it's working.

    Maybe, I'll see in the morning.

  • 0 in reply to Brian1941

    I removed the three computers from the EAP and everything is fine again.  So this turns out to be a bug report in the EAP, where the policy for decrypt is off, but if you toggle the categories of what can be decrypted or not also activates the policy for decryption--even though the policy is turned off.

Reply Children
No Data
Unfiltered HTML