Skip to content

Valtix Documentation

Valtix Decryption Profile Creation and Association

Valtix Documentation

Valtix Home
User Guide
User Guide
- Overview
- Cloud Provider Setup
  Cloud Provider Setup
  - AWS
    AWS
    
    Overview
    
    Cloud Formation
    
    Route53 Logging
    
    VPC Flow Logs
    
    Tech Notes
    Tech Notes
    
    IAM Roles
    
    Discovery Features
    
    VPC Setup
  - Azure
    Azure
    
    Overview
    
    AD Application
    
    Custom Role
    
    Marketplace Terms
    
    User Assigned Identity
    
    VNet Setup
  - GCP
    GCP
    
    Overview
    
    Enable API
    
    Service Accounts
    
    VPC Setup
- Cloud Account
  Cloud Account
  - AWS
  - Azure
  - GCP
- Inventory & Security Insights
  Inventory & Security Insights
- Discovery
  Discovery
- Security Gateways
  Security Gateways
  - Overview
  - AWS
    AWS
    
    Edge/VPC Mode
    Edge/VPC Mode
    
    Ingress
    
    Egress
    
    East-West
    
    Hub Mode using Transit Gateway
    Hub Mode using Transit Gateway
    
    Service VPCs
    Service VPCs
    
    Manage Service VPCs
    
    Manage Spoke VPCs
    
    Ingress
    
    Egress
    
    East-West
  - Azure
    Azure
    
    Ingress
    
    Egress
    
    East-West
    
    Service VNet
  - GCP
    GCP
    
    Ingress
    
    Egress
- Address & Service Objects
  Address & Service Objects
- Security Policy
  Security Policy
  - Ruleset
  - Rules
- TLS and Decryption
  TLS and Decryption
  - Certificates & Keys
  - Decryption Decryption
    Table of contents
    
    Associate the Decryption Profile with an Ingress Service Object
  - Tech Notes
    Tech Notes
    
    Azure Key Vault
    
    AWS KMS
    
    Self-Signed Certificates
- Network Threats
  Network Threats
- WAF and Application Threats
  WAF and Application Threats
  - WAF (Web Application Firewall)
  - L7 DoS (L7 Denial of Service)
- FQDN and URL Filtering
  FQDN and URL Filtering
  - FQDN
  - URL
- Packet Capture
  Packet Capture
  - Packet Capture
- Investigate & Analysis
  Investigate & Analysis
  - System Status
    System Status
    
    Audit Logs
    
    System Logs
  - Flow Analytics
    Flow Analytics
    
    Overview
    
    All Events
    
    Flow Logs
    
    Firewall Events
    
    Network Threats
    
    Web Attacks
    
    HTTPS Logs
    
    URL Filtering
    
    FQDN Filtering
    
    Session Summary
    
    Traffic Summary
  - Network Analytics
    Network Analytics
    
    Stats
- Alerts & Notification
  Alerts & Notification
  - Overview
  - ServiceNow
  - Pagerduty
  - Slack
- Log Forwarding
  Log Forwarding
  - Splunk
  - Datadog
  - Syslog
  - GCP Logging
- Users & Settings
  Users & Settings
AWS Tutorials
AWS Tutorials
- Egress - Hub (Centralized)
  Egress - Hub (Centralized)
FAQ
FAQ
- FAQ
Release Notes
Release Notes

Decryption Profile¶

Decryption profiles are used for TLS termination in Ingress (ReverseProxy) and for impersonating and signing the external host's cerificate in Egress (ForwardProxy) mode.

Navigate to Manage -> Profiles -> Decryption
Enter a name and a description.
In the Certificate Method choose Select Existing
Select the certificate
Click Save.

Associate the Decryption Profile with an Ingress Service Object¶

Check this document