Distributing Smoothwall’s (https) mitm self-signed CA certificate to BYOD (mobile) client devices (unmanaged device other than Windows clietns)
If you wish to use ‘decrypt and inspect’ for BYOD devices, the users will need to have the Smoothwall’s HTTPS MiTM CA cert sent out to them so that they can install it on their systems.
The best ways to get this CA to the clients is to either:
– Email the CA to them directly
– Provide a download link to the CA so the users can download it themselves directly.
Then, according to their devices instructions, they need to install the CA so it can be trusted.
(It isn’t possible to use a normal real world certificate for the MiTM as this requires a full certificate authority)