Help
FortiSASE
FortiSASE delivers both a consistent security posture and an optimal user experience for users working from anywhere. Secure your hybrid workforce by closing security gaps, plus simplify operations.
kgeorge
Staff
Staff

Created on ‎12-20-2023 02:07 AM

Article Id 290145

Technical Tip: Policies are not using Deep Inspection when enabled in Security Group

Description This article describes why Certificate Inspection is used even though Deep Inspection is used in the SSL Inspection Profile.
Scope FortiSASE SSL Inspection.
Solution

When 'Force Certificate Inspection' is enabled in the Policy, it will ignore the SSL inspection mode defined in the selected profile group and instead use Certificate Inspection.

 

To fix it, disable 'Force Certificate Inspection' in policies where Deep Inspection is required.

 
SASE Inspection.png
131
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.