1. Home
    2. PAN-OS
    3. PAN-OS® Web Interface Reference
    4. Objects
    5. Objects > Decryption Profile
    6. Settings to Control Traffic that is not Decrypted
    End-of-Life (EoL)

    Settings to Control Traffic that is not Decrypted

    You can use the
    No Decryption
     tab to enable settings to block traffic that is matched to a decryption policy configured with the
    No Decrypt
     action (
    Policies
    Decryption
    Action
    ). Use these options to control server certificates for the session, though the firewall does not decrypt and inspect the session traffic.
    No Decryption Tab Settings
    Description
    Block sessions with expired certificates
    Terminate the SSL connection if the server certificate is expired. This will prevent a user from being able to accept an expired certificate and continuing with an SSL session.
    Block sessions with untrusted issuers
    Terminate the SSL session if the server certificate issuer is untrusted.

    Recommended For You

    Recommended Videos

    Recommended videos not found.

    © 2022 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo