Hi,
I know that for deep packet inspection you need a computer to trust your selfmade CA. I know it can be distributed by a GPO, I wonder if this is possible: Enable Deep packet inspection on the UTM and force end point protection to install the CA and trust it (and maybe secure it?)
I hope this is possible it would make deploying https inspection a lot easier. I would also make perfect sense to me if it was possible since the endpoint protection and the UTM / XG are talking to each other so there must be some chain of trust. Why not extended that with deploying your fw CA?
This thread was automatically locked due to age.