WebBlocker: which category for SSL certificate renewal/CRL/OCSP?
I have some software which cannot start if some certificate renewal sites cannot be reached. For example I had to manually enable access to ocsp.digicert.com, ocsp.usertsust.com, ocsp.sectigo.com FQDNs.
Is there a specific WebBlocker category for certificate OCSP/CRL/renewal? Enabling "Information technology" seems to be too wide to me.
Thank You
0
Sign In to comment.
Comments
There isn't a webblocker category specific to that, you can see the list of them here:
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/services/webblocker/webblocker_categories_websense_c.html
In this case, it'd likely be best to make exceptions for the ones you need to talk to.
-James Carson
WatchGuard Customer Support