We are deploying a 2nd Ironport WSA to deal with just our guest network traffic. We started our testing using a self generate cert done by the Ironport itself. One problem we ran into is that going to a https site required clicking 3 seperate times on a certificate warning page before we got through to the site. We are beginning to think that we might need to go with a publicly signed cert so that we dont have to distribute a self signed cert out to the guest users that will be going through this Ironport.
Would like your thoughts/suggestions on this.
Ron