Enable Juniper ATP Cloud for Encrypted HTTPS Connections

If you have not already done so, you need to configure ssl-inspect-ca which is used for ssl forward proxy and for detecting malware in HTTPs. Shown below is just one example for configuring ssl forward proxy. For complete information, see Configuring SSL Proxy.

1. From operational mode, generate a PKI public/private key pair for a local digital certificate.

   For example:

2. From operational mode, define a self-signed certificate. Specify certificate details such as the certificate identifier (generated in the previous step), a fully qualified domain name for the certificate, and an e-mail address of the entity owning the certificate.

   For example:

Once done, you can configure the SSL forward proxy to inspect HTTPs traffic. For example:

For a more complete example, see Example: Configure Juniper Advanced Threat Prevention Cloud Policy.