Internal certificate authority

This topic discusses how to add an internal certificate authority (CA) to an outbound section of a standard decryption policy. The internal certificate authority is used to resign the traffic after it has been decrypted. The internal CA must be trusted by users on your network to avoid seeing untrusted certificate errors in their web browser.

For more information, see Add an internal CA for outbound protection.