CloudSOC Reach agent connects to elastica.net via the ProxySG.
Enabling SSL Decrypt on the ProxySG for the elastica.net domain did decrypt the traffic. But it broke the Reach agent > CloudSOC encryption. After turning SSL Decrypt back off, the Reach agent is communicating with CloudSOC, but the Reach agent is no longer presenting the authentication prompt as it did before.
Reach agent configured for explicit proxy
Visual Policy Manager (VPM)
Content Policy Language (CPL)
SSL verification error = 19
The VPM does not allows creation of the "forward with header passthrough" object. Revert back to CPL based configuration on the ProxySG.
Subscribing will provide email updates when this Article is updated. Login is required.