Network settings

You can configure the settings of encrypted connection scans. These settings apply to the Web Threat Protection and Network Threat Protection components.

Network settings

Setting

Description

Enable encrypted connection scans

This check box enables or disables encrypted connection scans.

The check box is selected by default.

Action when an untrusted certificate is encountered

In the drop-down list, you can select an action to be performed by the application upon detection of an untrusted certificate:

  • Allow connections to a domain with an untrusted certificate (default value).
  • Block connection to a domain with an untrusted certificate.

Action on an encrypted connection scan error

In this drop-down list, you can select the action to be performed by the application when an error occurs during an encrypted connection scan:

  • Add to exclusions (default value) – add the domain that resulted in the error to the list of domains with scan errors and do not scan encrypted network traffic when this domain is visited.
  • Disconnect – block the network connection.

Certificate verification policy

In the drop-down list, you can select how the application verifies certificates:

  • Local check— the application does not use the Internet to validate a certificate.
  • Full check (default value) — The application uses the Internet to check and download the missing chains that are required to validate a certificate.

Exclusions

This group of settings contains the Configure button. Clicking this button opens the Exclusion scopes window. In this window, you can configure the list of trusted domain names.

Network ports settings

This group of settings contains the Configure button. Clicking this button opens the Network ports window.

Page top