To utilize a Microsoft AD server with the SSL Visibility appliance, take the following steps.
PKI menu on the SSL Visibility appliance,
Generate a Certificate Signing Request, to be imported on to your MS CA server. If you MS CA server is root CA, all clients in the domain should trust it.
Copy the contents of the CSR.
Next, go to the MS CA. This examples uses a web based GUI. Blue Coat recommends using Firefox over Chrome.
You must be an Administrator, and to sign in to the domain with domain\user. If you do not sign in using domain\user, you will not see the
Submit an advanced certificate request option on the second page of of the requesting a certificate process.
Request a certificate.
Choose Advanced certificate request.
Paste the key into the Saved Request text box. Choose a Certificate Template of Subordinate Certification Authority, and click Submit.
Choose the DER encoded radio button, then Download certificate.
Now go to the SSL Visibility appliance > PKI > Choose Local Resigning Certificate Authorities, and click Install Certificate.
When the window opens, choose the certificate file you downloaded from the MS CA server, and clickAdd. Next, click Apply on the SSL Visibility appliance
Apply the resigning CA in your policy via your Ruleset and Decrypt rule.
Imported Document ID: 000024597
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.