Showing results for 
Search instead for 
Did you mean: 

Cisco WSA HTTPS Decryption

Mandeep singh5
Level 1
Level 1

Hello All,

I've gone through the following document and I just need to confirm that for HTTPS Decryption we need to first upload the Root certificate and key. After that, we need to generate a server certificate by generating a certificate and a key. The server certificate is going to be used for SSL decryption but for that first, we need to upload the root certificate.

Please confirm.

WSA Certificate Usage for HTTPS Decryption - Cisco

@amojarra @websecurity

2 Replies 2

Cisco Employee
Cisco Employee

Hello @Mandeep singh5 

Kindly check this link : Configure Decryption Certificate in Secure Web Appliance - Cisco

I've tried to put everything there. 

and in general, WSA needs to trust the CA who is signing your certificate. so you need to add the CA certificate as a trusted certificate. then submit and Commit the changes.

then you can add the signed certificate.  



Amirhossein Mojarrad


++++        If you find this answer helpful, please rate it as such      ++++


Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: