Squid HTTPS | Transparent Proxy | External CA



  • Hi All,

    I have been successfully configured HTTPS filtering via squid and squidguard by generating and using an internal-ca certificate. However, my problem is the hassle of importing the internal-ca certificate to every user workstations in my network.

    Is there any way that I can use our company's wildcard SSL certificate (root ca, intermediate ca, server certificate, private key) to work with squid? This will save me time (as we have hundreds of workstations in our organization) as our wildcard SSL certificate are already verified by different browsers and services so no need to add them manually one-by-one to all workstations.

    Help, greatly appreciated :-)


  • Banned

    No, absolutely NOT. You need to have your own CA so that Squid can issue certificates for arbitrary domains on the fly. Otherwise, use "Splice All".