Devices accessing the internet need to trust the SSL certificate used for decryption. You may need to install the SSL certificate issued by your decryption system on the devices or within the browsers.

Most systems log the decrypted content, and you can review these logs to see the details of the accessed websites.

If you're using a proxy server for SSL decryption, review the logs on the proxy server. These logs often contain details about the URLs visited, content downloaded, and other relevant information.

Capture network traffic using tools like Wireshark. Analyzing packet captures can provide insights into the decrypted content. Look for packets with the decrypted application data.

you can use the private key associated with the SSL/TLS certificate used for decryption to decrypt the HTTPS traffic. This process requires access to the private key and is usually done in the Wireshark settings.

The decryption is standard and just like other devices

SSL decryption Is the feature to analysis the packet and and encypt it for misuse.
Traffic checking
Encryption and decryption

See below details on how IAG decrypt works

1. Decryption Methods:

    Gateway Decryption:
        Decryption occurs directly on the IAG appliance.
        Leverages a trusted root certificate installed on endpoints.
        Suitable for centralized control and visibility.
    Client Decryption:
        Decryption is handled by a client-side agent (Ingress Client).
        Reduces load on the IAG appliance, potentially improving performance.
        Beneficial for remote or BYOD devices.
        Can be used independently or in conjunction with gateway decryption.

2. Traffic Interception and Inspection:

    IAG intercepts encrypted traffic (HTTPS) using SSL/TLS interception techniques.
    It acts as a proxy, decrypting the traffic using its trusted certificate.
    Inspects decrypted content for threats and enforces security policies.
    Re-encrypts traffic before sending it to its destination.

3. Security Benefits:

    Threat Detection and Prevention:
        Inspects decrypted traffic for malware, viruses, phishing attempts, and other threats.
        Blocks malicious content and enforces security policies.
    Data Loss Prevention (DLP):
        Identifies and prevents sensitive data from leaving the network.
    Compliance Enforcement:
        Ensures adherence to industry regulations and internal policies.
    Visibility and Control:
        Provides insights into user activity and encrypted traffic patterns.

4. Decryption Policies:

    Granular control over which traffic to decrypt based on:
        URLs
        Applications
        User groups
        Security requirements

5. Certificate Management:

    IAG manages root certificates and associated trust relationships.
    Ensures secure decryption and re-encryption processes.

6. Performance Optimization:

    Features like the Ingress Client help mitigate performance impacts of decryption.
    Selective decryption policies can further optimize resource usage.

7. Integration with Other Security Features:

    Works seamlessly with other IAG security features, such as:
        URL filtering
        Application control
        Threat intelligence
        User authentication

Remember:

    Careful configuration and management are crucial for effective and secure decryption.
    Consider factors like performance, security requirements, and network infrastructure when choosing decryption methods and policies.
    Regularly review and update policies to maintain protection against evolving threats.

Decryption is standard and just like other devices