Summary
You have installed InterScan Web Security Virtual Appliance (IWSVA) 6.0 as forward proxy and you are using HTTP decryption with a self-signed certificate. The certificate is trusted in the client browsers.
However, when you removed the old certificate out of the client cert store and imported a new one, the old one is still the one appearing on the browser.
Details
To let IWSVA recognize the new certificate, delete the old certificate manually:
- Log in as root on the IWSVA shell.
- Stop the HTTP daemon by executing:
/etc/iscan/S99ISproxy stop
- Delete the resigned_cert file:
cd /etc/iscan/https/certstore/cache/
rm -rf resigned_cert - Start HTTP daemon using the command:
/etc/iscan/S99ISproxy start
