Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working With Encrypted Data > Managing HTTPS website access > Adding websites to the Incident List
Adding websites to the Incident List
Help | Content Gateway | v8.5.x
Use the Configure > SSL > Incidents > Add Website tab to specify sites that you want to allow, blacklist, or tunnel. Sites that are added manually are assigned chronological Ticket IDs. These appear on the Incident List. See Viewing incidents.
1.
Enter the URL of the site to add to the Incident List.
 
Note 
2.
Select either By Certificate or By URL.
*
By Certificate provides greater security. When a site is added by certificate:
*
*
If sites are blocked by certificates, wildcard certificates are not accepted, even if the common name is recognized.
*
Select By URL to tunnel, allow, or blacklist the site.
3.
*
Tunnel: (Valid for By URL only) The site is tunneled. Traffic is not decrypted and Content Gateway does not check the certificate.
 
Important 
*
Allow: Users can access the site even if the certificate is not valid. Traffic is decrypted, and certificate checking is disabled.
*
Blacklist: The site is completely blocked. Users cannot access this site even if the Verification Bypass is configured.
4.
Click Apply.
As a best practice, administrators should manually add sites to the Incident List after monitoring network traffic for a period of time with the CVE disabled. (See Configuring validation settings.) This enables administrators to improve performance by tunneling trusted sites and blocking those they know should not be accessed.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working With Encrypted Data > Managing HTTPS website access > Adding websites to the Incident List
Copyright 2020 Forcepoint. All rights reserved.