Advertisement
I am in the planning phase for rolling out DPI-SSL on our SonicWall. I have found two conflicting suggestions on creating a custom DPI-SSL certificate and am having trouble identifying any pros/cons to each approach.<\/p>\n
Method #1:<\/span><\/strong> This can be seen at 18:00 mark in this video https://youtu.be/ZxwhpHh7Los?t=1080<\/a><\/p>\n
What is suggested is basically to export the root AD CA certificate, and then use that as the SonicWall DPI-SSL certificate.<\/p>\n Method # 2:<\/strong> https://www.sonicwall.com/support/knowledge-base/170503319041199/<\/a><\/p>\n Summary: Import AD CA certificate as trusted CA on SonicWall. Create CSR on SonicWall and have AD CA sign the certificate. Assign this for use with DPI-SSL.<\/p>\n Are there any major benefits/downsides to one or the other?<\/p>","upvoteCount":7,"answerCount":3,"datePublished":"2019-03-27T18:33:38.000Z","author":{"@type":"Person","name":"amosfolz","url":"https://community.spiceworks.com/u/amosfolz"},"suggestedAnswer":[{"@type":"Answer","text":" I am in the planning phase for rolling out DPI-SSL on our SonicWall. I have found two conflicting suggestions on creating a custom DPI-SSL certificate and am having trouble identifying any pros/cons to each approach.<\/p>\n Method #1:<\/span><\/strong> This can be seen at 18:00 mark in this video https://youtu.be/ZxwhpHh7Los?t=1080<\/a><\/p>\n What is suggested is basically to export the root AD CA certificate, and then use that as the SonicWall DPI-SSL certificate.<\/p>\n
Advertisement