Description
Sometimes it is required to access sites that are using self-signed certificates, which appear to be invalid by default and will be blocked by the default HTTPS policy (specifically the "Block Certificate Validation Errors" rule).
Symptoms
While trying to access those sites the user receives a blocking page.
Cause
This rule is by default performed on all HTTPS (secured) sites.
Solution
1. In the Lists section, create a URL list, e.g. called "No certificate validation" and add the blocked HTTPS sites to it.
2. Duplicate the default https policy.
3. Modify the rule "Block certificate validation errors" by adding the new URL list "No Certificate Validation"
Assign this policy to relevant users.
Apply and commit changes.
Software Version
8.5.0
- This article applies to:
- NG 1000
- NG 5000
- NG 6000
- NG 8000
- This article was previously published as:
- Finjan KB 1616