https://community.sophos.com/sophos-xg-firewall/sfos-v18-early-access-program/f/feedback-and-issues/118034/ssl-tls-inspection-shows-wrong-certificate-typeHi all, maybe this is a bug, or i am just doing things wrong. I create and imported a new test certificate authority with openssl with secp384r1 for testing the new SSL/TLS inspection with using an ec certificate for re-encryption. The gui itselfen-USTelligent Community 12https://community.sophos.com/thread/427727?ContentTypeID=1Tue, 04 Feb 2020 15:39:43 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:fc30e199-46a0-4f10-a07e-e85ab28304dfMichael Dunn<p>Confirmed there is a bug.</p> <p>EC CAs that contain all fields show up as (EC).</p> <p>EC CAs that are missing some fields/extensions are valid, but show us as (RSA).</p> <p>Will be fixed post-GA.</p><div style="clear:both;"></div>https://community.sophos.com/thread/427186?ContentTypeID=1Wed, 29 Jan 2020 22:30:39 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:b1857fba-0a89-44aa-8508-5dc91bc7d566Michael Dunn<p>We just tested with a similarly built CA and did not have this problem.</p> <p>Is is possible for you to send me in a private message: the PEM, Key, and passphrase so we can try your exact CA?</p> <p>You could even create a new one with the same steps if you are concerned with send me a your real CA.</p> <p>&nbsp;</p> <p>In case it is not a CA problem, but configuration, if you open a support tunnel (diagnostics, support access) I can have a quick look at your box rather than asking for a bunch of screenshots.</p> <p>Thanks.</p><div style="clear:both;"></div>