What happens if the option to push custom SSL certificates is not enabled in Zscaler?

If the option to push custom SSL certificates is not enabled in Zscaler, the system will utilize the Zscaler-provided SSL certificate for inspection. This means that the Zscaler service will be able to inspect SSL-encrypted traffic by using its own certificate to establish secure connections with both client devices and external sites.

This functionality is important for maintaining visibility and security within the network while still allowing encrypted traffic to be inspected for potential threats. By relying on the Zscaler-provided certificate, organizations can continue to benefit from SSL inspection without the need for custom certificates on each device, streamlining the deployment process.

Selecting custom SSL certificates may be necessary for certain scenarios, particularly for meeting specific compliance requirements or for organizations that need to maintain control over certificate management. However, if this option is not enabled, it defaults to using Zscaler's own SSL certificate, which facilitates the necessary inspection without additional configuration.