Allow or block domains incompatible with TLS MITM certificate

You can allow or block domains that are not compatible with the TLS man-in-the-middle (MITM) certificate that is required for ETP Proxy. Depending on your organization, you may need to allow or block these domains. For a list of domains that are not compatible with the certificate, see Akamai bypass list.

This procedure assumes that you are modifying an existing policy.

How to

  1. In the navigation menu, select Configuration > Policies.
    Note: If you are trying the new Enterprise Center interface, in the navigation menu, select Policies > Policies.
  2. Click the name of the policy that you want to edit.
  3. Click the Settings tab.
  4. In the Proxy Settings area:
    1. To allow domains that are incompatible with the TLS MITM certificate, make sure the Block Incompatible Domains toggle is not enabled.
    2. To block domains that are incompatible with the TLS MITM certificate, toggle Block Incompatible Domains.
  5. Click Save.

Next steps

Deploy the policy to the ETP network. For instructions, see Deploy configuration changes.