Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
983
Views
0
Helpful
1
Replies

About SSL Policy with vFMC

yunsh63
Level 1
Level 1

‎03-04-2019 09:35 PM

Hi.

 

Using vFMC and FP 8140.

 

OS version are 6.2.3.4.

 

And FP is using Passive mode.

 

This situation, I config the SSL Policy.

 

Make object, Make a Rule and Deploy.

 

But SSL Policy is not work.

 

Is the passive mode not working the ssl policy?

 

Thanks.

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-05-2019 12:42 AM

In a passive deployment, SSL decryption options are quite limited. For instance, you cannot decrypt and resign as that is necessarily an active deployment characteristic.

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/understanding_traffic_decryption.html#ID-2252-00000029

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card