Enable encrypted connection scans

This check box enables or disables encrypted connection scans.

The check box is selected by default.

Action when an untrusted certificate is encountered

In the drop-down list, you can select an action to be performed by the application upon detection of an untrusted certificate:

• Allow connections to a domain with an untrusted certificate (default value).
• Block connection to a domain with an untrusted certificate.

Action on an encrypted connection scan error

In this drop-down list, you can select an action to be performed by the application when an error occurs during an encrypted connection scan:

• Add to exclusions (default value) – add the domain that resulted in the error to the list of domains with scan errors and do not scan encrypted network traffic when this domain is visited.
• Disconnect – block the network connection.

Certificate verification policy

In the drop-down list, you can select how the application verifies certificates:

• Local check: the application does not use the internet to validate a certificate.
• Full check (default value): the application uses the internet to check and download the missing chains that are needed to verify a certificate.

Trusted domains

This group of settings contains the Configure button. Clicking this button opens the Trusted domains window. In this window, you can configure the list of trusted domain names.

Trusted certificates

This group of settings contains the Configure button. Clicking this button opens the Trusted certificates window. In this window, you can configure a list of trusted certificates, which is used when scanning encrypted connections.

Network ports settings

This group of settings contains the Configure button. Clicking this button opens the Network ports window.