Procedure

The process differs depending on the operating system and type of browser. For example, you can use the following process for Internet Explorer and Chrome running on Windows. (For Firefox, install through the Tools > Options > Advanced page.)

Messages should indicate that the import was successful. You might see an intermediate dialog box warning you that Windows could not validate the certificate if you generated a self-signed certificate rather than obtaining one from a well-known third-party Certificate Authority.

You can now close out the Certificate and Internet Options dialog boxes.

Procedure

Step 1

Download the certificate from Firepower Device Manager.

  1. In the navigation pane, click Inventory.

  2. Click the Devices tab to locate the device or the Templates tab to locate the model device.

  3. Click the FTD tab and select the device on which the certificate is stored.

  4. Click Policy in the Management pane at the right.

  5. Click SSL Decryption in the policy bar.

  6. Click the SSL decryption configuration button in the SSL decryption policy policy bar.

  7. Click the Download button

  8. Select a download location, optionally change the file name (but not the extension), and click Save.

  9. You can now cancel out of the SSL Decryption Settings dialog box.

Step 2

Install the certificate in the Trusted Root Certificate Authority storage area in web browsers on client systems, or make it available for clients to install themselves. This procedure will be different for different browsers and operating systems.