Testing HTTPS Decryption

This section describes the procedure to test HTTPS decryption on IWSVA in standalone mode.

To test virus scanning of decrypted HTTPS traffic:

1. Set the Web client’s HTTP proxy to point to IWSVA (for example, open Internet Explorer and click Tools > Internet Options > Connections > LAN Settings > Use a proxy server).

2. Open the IWSVA Web console and click HTTP > HTTPS Decryption > Settings | Server Certificate Validation and make sure all options are selected.

3. Click HTTP > HTTPS Decryption > Policies and click Enable HTTPS Decryption.

4. Click Add to create a new HTTPS decryption policy. In the Rules tab, select Disease Vector under the Computers/Harmful category.

5. From the client machine, access the test virus file from the following URL:

https://secure.eicar.org/eicar.com

6. Because the server certificate is not in the trusted list on IWSVA, a certificate error notification displays. Click Visit site anyway.

7. A security warning screen displays. The warning message varies depending on whether URL filtering is also enabled or not.