Add trusted CA certificates

(Optional.) This task discusses how to add trusted CA certificates to your decryption policy. We strongly recommend you add add issuer CAs for your organization's certificates to avoid issues with decrypting traffic.

Before you begin

Complete the tasks discussed in:

Create a standard decryption policy with inbound protection
Create a Decryption Policy with outbound connection protection

Procedure

Step 1	In your policy, expand Advanced Options.
Step 2	In the Trusted CA certificates list, do any of the following: Click the name of a trusted CA certificate from the list. To remove all certificates from the list, click . To return the list to its original values, click Add recommended.