Hi,
We have a Cyberoam 50iNG that recently migrated to SFOS. Users use Captive Portal to authenticate to firewall. I am using a valid ( not self-signed ) certificate for captive portal that works fine and have no certificate error when I open captive portal page directly. But when I try to open a https website on a computer that is not authenticated yet, instead of redirecting to captive portal, browser displays a certificate warning for invalid CA ( Cyberoam SSL CA) and option to open network login page which opens captive portal page without problem. I know decrypting https traffic or applying https scanning on web policy or using microapp discovery on app filter policy can cause this issue and I also know I can import SSL CA certificate on client computer to fix this issue. Problem is I haven't used any policy to decrypt https and receiving certificate warning on browser is not normal. Http web site have no issue and opening HTTP website on an unauthenticated computer redirects to captive portal. Also for https web sites after ignoring certificate issue and pressing "open network login portal" button on browser, redirects to captive portal and after authentication, certificate of same https web site is fine and firewall is not trying to apply its own ca for authenticated users but for unauthenticated users, it shows cyberoam ssl ca on certificate authority instead of its original ca. As I mentioned there is no ssl decrypting nor web&app policy applied.
This thread was automatically locked due to age.
