Exempt Microsoft application categories from full SSL inspection on SONIC firewall
Our client is using SONIC firewall and also using Microsoft Defender for Endpoint. There is a feature in Microsoft Defender for Endpoint "Automated investigation and response (AIR)" that run investigation on device that failed because of the error "Failed to upload SenseIR command outputs. The device network settings prevented upload/download of files". I search for a solution and found that issue can be fixed by exempting Microsoft application categories from full SSL inspection on firewall. So how to do it?