The ssl whitelist userdefined-hostname description command sets the description of a user-defined domain name in the SSL domain name whitelist.
The undo ssl whitelist userdefined-hostname description command deletes the description of a user-defined domain name in the SSL domain name whitelist.
ssl whitelist userdefined-hostname host-name description description
undo ssl whitelist userdefined-hostname host-name description
| Parameter | Description | Value |
|---|---|---|
| host-name | Specifies a domain name. The value is the DNS Name or Common Name field in the server certificate. | The value is a case-insensitive string of 1 to 64 characters. If the name contains spaces, the length ranges from 3 to 66 characters. You need to use double quotation marks ("") to enclose the name, for example, "www.example.com". |
| description description | Specifies the description of a user-defined domain name in the SSL domain name whitelist. | It is a string of 1 to 128 characters, spaces supported. |
After SSL-encrypted traffic detection is enabled on the FW, website access over HTTPS may fail because the FW functions as the SSL connection proxy and the client requires deep check on the server certificate. You can run the display app-proxy dynamic-cert cache command to query recent server certificate information with the FW functioning as the SSL proxy, and run the ssl whitelist userdefined-hostname name command to add the DNS Name or Common Name field in the server certificate to the SSL domain name whitelist. In this manner, the FW no longer functions as the proxy for the SSL connections destined for the server.