Skip to content

Types of Proxy Certificates

At least three different certificates will need to play together nicely in order to make the secure proxy with client certificate authentication and HTTPS inspection. The following table describes each one in detail.

Purpose Description More Info
HTTPS Decryption Self signed Root Certification Authority certificate and private key that the proxy will use to decrypt-inspect-encrypt connections to the orgin servers on behalf of the proxy clients. Decryption of HTTPS Traffic
Secure Proxy Normal web site certificate that the Secure Proxy will use to protect incoming connections from the clients. Secure Proxy Settings
Client Authentication List of root certification authorities that can verify client certificates Client Certificates Authentication

Generally speaking, all these certificates are not related but for the purpose of this tutorial we will reuse the HTTPS Decryption certificate to generate other two. It will make the tutorial much easier to follow.