Preview Tool

Cisco Bug: CSCuj55099 - Decryption policies don't warn if no WSE lic and decrypt malicious

Last Modified

Aug 19, 2016

Products (1)

  • Cisco ASA Next-Generation Firewall Services

Known Affected Releases


Description (partial)

Customer configures a decryption policy that has the action "Decrypt potentially malicious traffic", but device does not have a WSE license assigned to it, thus the action will never be triggered.

Customer will hit poor reputation sites that are encrypted, but the decryption policy won't match and the traffic won't get blocked.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.