I am implementing a proxy server that will inspect HTTPS traffic. I when using the private Certificate Authority (CA) that comes with the product allows me to inspect HTTPS traffic, however, the client browsers display a certificate warning each time users access an HTTPS website.
“IWSaaS allows administrators to cross-sign your organization’s own CA certificate with the Certificate Signing Request (CSR) file provided by Trend Micro, and upload the cross-signed certificate on the IWSaaS management console. Cross-signing the CA certificate establishes a trusted relationship between the IWSaaS CA certificate and your organization’s own CA certificate.”
A couple of questions,
1.) I need a CA Certificate. Will a standard certificate from the likes of GoDaddy / LE suffice?
2.) im not familiar with openssl, how am I best to have this cross-signed?