Zscaler/SSL inspection proxy solution for IoT Edge

Question

Does Azure IoT Edge works with Zscaler proxy AND SSL inspection

Indeed, we need to check header information from IoT Edge for security reason which require to decrypt . IoT Edge run in CentOS or Ubuntu ESX VM and Zscaler certificat can be uploaded in the OS file system

regards

score 1 · Answer 1 · answered Apr 29 '21 at 19:24

1

You will need the Zscaler root certificate added to list of root certificates that are trusted by OpenSSL in both the edgeAgent and edgeHub modules. Without that the TLS negotiation will fail with not trusting the certificate chain from any server that they attempt to negotiation a TLS connection with. I have done this. It will work.

answered Apr 29 '21 at 19:24

Mark Radbourne

528
3
12

[How to add ZScaler certificate to edgeHub and edgeAgent?](https://stackoverflow.com/questions/71871323/how-to-add-zscaler-certificate-to-edgehub-and-edgeagent) – Ecstasy Apr 14 '22 at 12:36
2

I added a more detailed answer in the question referenced above. – Mark Radbourne May 11 '22 at 19:44

Zscaler/SSL inspection proxy solution for IoT Edge

1 Answers1

Linked