scm_create_decryption_profile
Create a decryption profile for SSL/TLS traffic inspection in Palo Alto Networks firewalls, configuring forward proxy, inbound inspection, and exclusion settings to manage encrypted traffic security.
Instructions
Create a decryption profile.
Args: name: Unique name for the profile. folder: Folder to create the profile in. ssl_forward_proxy: Forward-proxy SSL inspection settings dict (optional). Keys include: block_expired_certificate, block_untrusted_issuer, block_unknown_cert, min_version ('tls1-0', 'tls1-1', 'tls1-2', 'tls1-3'). ssl_inbound_inspection: Inbound inspection settings dict (optional). Keys: min_version, max_version. ssl_no_proxy: No-proxy settings dict for excluded traffic (optional). tsg_id: Optional TSG ID or named alias. Defaults to SCM_TSG_ID.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| name | Yes | ||
| folder | Yes | ||
| ssl_forward_proxy | No | ||
| ssl_inbound_inspection | No | ||
| ssl_no_proxy | No | ||
| tsg_id | No |