This knowledge base article provides information on how Sophos Web Protection performs URI security checks on HTTPS requests. The following sections are covered:
Applies to the following Sophos products and versions Sophos Endpoint Security and Control 10.8.2Central Endpoint Advanced 11.5.11
Sophos Web Protection has the ability to perform URI security checks on HTTPS requests if the browser being used supports Server Name Indication (SNI).
SNI enabled browsers request the domain name before the certificate is committed to the server. This allows filtering applications to intercept the domain name request without having to intercept and decode HTTPS traffic.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable for us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.