You cannot use an IIS-generated self-signed certificate to load access logs over SSL because the certificate that IIS creates is not complete. As a security device, the ProxySG appliance will not accept an incomplete certificate.
Workaround: Create a self-signed certificate using OpenSSL and import it into IIS. Here are the steps:
Generate the private key on the Linux/Unix/Cygwin host: > openssl genrsa -des3 -out ftpvm.key 1024.
Remove Passphrase from Key. One side-effect of the pass-phrased private key is that ftpvm will ask for the pass-phrase each time the FTP server is started.: > openssl rsa -in ftpvm.key.org-out ftpvm.key