We're currently using https inspection but for URL filtering only. We want to move it up a notch and use decrypt and scan.
I understand the concept with trusting the root CA for the UTM if this was a private cert and the need to install/trust the root CA on each device which can be a fair amount of work to get through if looking at hundreds of clients. Even if in a windows domain where the trust could be deployed via a GPO etc, it can still be troublesome eg android devices etc.
So the question is..... is all this trouble and effort avoided by purchasing a certificated from a trusted root authority eg Digicert etc? And would a wildcard suffice for this?
This thread was automatically locked due to age.