Hello everyone,
I have a weird problem with https decryption. First, let me describe our equipment:
- AD network with 2 DC and internal CA
- An XG 125 router for internet access, firmware 19.0.0 GA-Build317
- Decryption is set up on the router, a subCA has been generated to re-encrypt previously decrypted traffic.
Everything works fine, except for some sites. For example, if you visit https://www.insee.fr , the browser indicates SEC_ERROR_UNKNOWN_ISSUER, and this site is encrypted with a certificate issued by "Sophos SSL Untrusted CA_KBeHDi0aSFUuBkKUVk6XCNC", which is clearly not my subCA!
I checked on the router and and no trace of this certificate!
Does anyone have any idea what is going on?
This thread was automatically locked due to age.