We have a Fortigate and we're seeing the need to implement SSL Inspection to be able to scan SSL traffic.
As I understand it the Fortigate would interject it's own certificate in the transaction between the client and the website too decrypt/encrypt the data on the fly to scan it.
Seeing that we can use a Self Signed Certificate from our domain CA to do accomplish scanning SSL traffic.
However we want to scan nodes/PC's/macs which is not joined in our domain and multiple browsers etc.
Is it possible to use a public/trusted CA like Comodo or Digicert to scan SSL traffic, and would you need a specific type of certificate ?