Adding domains to the SSL bypass list

You can add domain URLs that need to be excluded from SSL decryption to a bypass list.

When you add domain URLs to the list, decryption is excluded for those in the list. F1E retrieves the SSL bypass list from FSM and applies policies accordingly.

Note: In FSM 10.3 onwards, you will have the following features:
  • The Filter field - Allows you to search for a specific URL.
  • The Import button - Allows bulk addition of domain URLs to the list.

Steps

  1. Go to General > Endpoint > Advanced tab.
  2. Scroll down to Excluded Domains For SSL Decryption by Endpoint Inline Proxy.

    Note: This section is only available when you have selected Inline Proxy mode for Web Traffic Detection.
  3. Add the domain which you want to bypass in the URL section.
  4. Click ADD.

    The domain update gets applied to both macOS and Windows Endpoints.

  5. Click Deploy.
    Warning: No DLP Policies are applicable to the Inline Proxy bypassed URLs when these sites use HTTPS or Encryption.