Types of Proxy Certificates
At least three different certificates will need to play together nicely in order to make the secure proxy with client certificate authentication and HTTPS inspection. The following table describes each one in detail.
| Purpose | Description | More Info |
|---|---|---|
| HTTPS Decryption | Self signed Root Certification Authority certificate and private key that the proxy will use to decrypt-inspect-encrypt connections to the orgin servers on behalf of the proxy clients. | Decryption of HTTPS Traffic |
| Secure Proxy | Normal web site certificate that the Secure Proxy will use to protect incoming connections from the clients. | Secure Proxy Settings |
| Client Authentication | List of root certification authorities that can verify client certificates | Client Certificates Authentication |
Generally speaking, all these certificates are not related but for the purpose of this tutorial we will reuse the HTTPS Decryption certificate to generate other two. It will make the tutorial much easier to follow.