Enable or disable HTTPS inspection depending on transparent or non-transparent proxy
Enable or disable HTTPS inspection depending on transparent or non-transparent proxy.
For instance, with our previous filtering provider (RM SafetyNet+) we could let guest users access the internet with transparent proxy where HTTPS interception would NOT be performed (no need for additional certificates), or set school devices to use sslfilter.proxy.swgfl.org.uk where HTTPS interception would apply.
I understand HTTPS inspection can be enabled or disabled by location, but most primary schools only have flat networks and a single DHCP scope.
We use mostly authentication for making different between HTTPS intercept and not. When user is authenticated, mostly this is a managed device with root cert installed.