Greetings,
I am getting ready to go live with HTTPS scanning & decryption, and one question that has come is why can't the Sophos XG use a SubCA for HTTPS decryption.
Our RootCA is offline, and we'd prefer to keep it that way... I did get the SubCA cert loaded, and can *use* it for https decryption, but all I get is errors that the provider is not recognized.
The fallback is going to be to use the Sophos Appliance Certificate, but before moving forward I'd love to understand why a SubCA is no good.
Thanks in advance,
Eric
This thread was automatically locked due to age.
