Skip to main content



Cisco Defense Orchestrator

TLS Server Identity Discovery in Firepower Threat Defense

You can now perform improved URL filtering and application control on traffic with FTD's unique TLS Server Identity Discovery that allows control and precision when it comes to your environment. You do not have decrypt the traffic for this feature to work.

Note: Support for the Server Identity Discovery feature is limited to Version 6.7 and later. 

Enable the TLS Server Identity Discovery

Use the following procedure to enable, or disable, the TLS Server Identity Discovery feature for your FTD access control policies:

  1. Log into CDO. 
  2. Navigate to the Devices & Services page and select your FTD device. 
  3. In the Management pane located to the right, select Policy
  4. Click the Access Policy Settings gear icon AccessPolicySetting.jpg in the upper right corner of the table .
  5. Slide the toggle to enable TLS Server Identity Discovery.
  6. Click Save
  • Was this article helpful?