Example 2: Configuring a policy for HTTPS
If you want to protect a single HTTPS web server, and the FortiWeb appliance is operating in reverse proxy mode, configuration is similar to
Example 1: Configuring a policy for HTTP via auto-learning. (Optionally, you can configure a server policy that includes
both an HTTP service and an HTTPS service.)
To be able to scan secure traffic, however, you must also configure FortiWeb to decrypt it, and therefore must provide it with the server’s certificate and private key.
To configure an HTTPS policy
1. Upload a copy of the web server’s certificate (System > Certificates > Local).
3. Modify the server policy (Policy > Server Policy > Server Policy).
Traffic should now pass through the FortiWeb appliance to your server. If it does not, see
“Troubleshooting”.