question

ktiwari avatar image
0 Likes"
ktiwari asked

Why are my SWG SSO users seeing certificates signed by a Fortinet CA when Deep Inspection is disabled?

FortiSASESSO
10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

·
ktiwari avatar image
0 Likes"
ktiwari answered

This is expected behavior when using SWG SSO (SAML) to authenticate users, even if DPI is not explicitly enabled. This does not necessarily mean that the SASE backend infrastructure is applying Deep Inspection logic on the user traffic. It will only do so when the user has associated profile and policies configured to do so on the intended traffic.

10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space