Distributing Smoothwall’s (https) mitm self-signed CA certificate to BYOD (mobile) client devices (unmanaged device other than Windows clietns)

If you wish to use ‘decrypt and inspect’ for BYOD devices, the users will need to have the Smoothwall’s HTTPS MiTM CA cert sent out to them so that they can install it on their systems.

The best ways to get this CA to the clients is to either:

– Email the CA to them directly
or
– Provide a download link to the CA so the users can download it themselves directly.

Then, according to their devices instructions, they need to install the CA so it can be trusted.

(It isn’t possible to use a normal real world certificate for the MiTM as this requires a full certificate authority)

Advertisements

Posted on July 9, 2015, in Smoothwall. Bookmark the permalink. Leave a comment.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: