Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
557
Views
0
Helpful
1
Replies

IronPort WSA: Reports on HTTPS only sites

Enam Rahman
Level 1
Level 1

‎01-12-2016 09:48 AM

Hi, a customer just recently enabled IronPort WSA HTTPS proxy, and wants to get an idea of which sites their employees are accessing over HTTPS. I only setup a decryption policy for now, with nothing getting blocked. Is there a way to generate a report to see this list of sites? The L4TM reports shows multiple URLs per site, so it's not very easy to use. Thanks.

Labels:
0 Helpful
1 Reply 1

Handy Putra
Cisco Employee
Cisco Employee

‎01-21-2016 11:00 PM

Hi,

Unfortunately, WSA built in reporting tools is quite limited and it does not has any reporting to just showing what HTTPS websites access only.

The reporting that it has is either listed all websites being accessed (HTTP and HTTPS) or using the Web Tracking to do more filter (however there is no option to just showing HTTPS sites only).

If you want to get more granular and more options in term of reporting with WSA, would recommend to get Splunk third party reporting tool that will work with WSA appliance. Recommend to speak to your Cisco Sales Rep to get more info regarding Splunk Reporting.

Hope this helps,

Regards

Handy

0 Helpful
Customers Also Viewed These Support Documents