HTTPS scanning mobile devices

Question

I am trying to enable HTTPS decyrption and scanning for mobile devices in my network. I not sure what i am doing wrong but when i enable HTTPS scanning in the firewall rule browser traffic works fine. Able to go to google and keywords/content filter works and blocks/warns as expected. However apps on the devices like google play store apple store and others stop functioning. 
 I have a chromebook and a iphone in my test firewall rule and both of them are showing the same symptoms. I have added exceptions in the exeptions tab for play.google.com, youtube etc. however when https scanning is enabled in the rule these apps stop working, as soon as i untick the checkmark they start functioning again, but of course then the google searches for keywords or content filtering then stop working. 
 Someone please point me in the right direction here to get this working correclty on mobile devices, Android, apple, chromebooks

lferrara · Accepted Answer

Try to add exceptions on web filtering for the following domains: 
 google.com googleapis.com gstatic.com googleusercontent.com accounts.google.com drive.google.com docs.google.com

lferrara · Answer

For applestore, add these: 
 ^([A-Za-z0-9.-]*\.)?cdn-apple\.com\.?/ ^([A-Za-z0-9.-]*\.)?icloud\.com\.?/ ^([A-Za-z0-9.-]*\.)?mzstatic\.com\.?/ ^([A-Za-z0-9.-]*\.)?apple\.com\.?/

lferrara · Answer

Use the log viewer or drop-packet-capture from XG console while you open the play store to understand the URLs and then put them under the exception lists. 
 Regards