I have found an article about the order of the SSL scanner engine and the authentication engine.
- SSL Scanner
NOTE: In general, you will NOT be able to limit the SSL Scanner to a particular username or usergroup. The reason is that the SSL Scanner rule set occurs above where authentication occurs (which is expected/recommended). At the time the SSL Scanner ruleset is called, we do not yet have the username. You would need to move portions of the SSL Scanner 'after' authentication in order to limit to user or group. If you have a need, it is strongly recommended you work with support for assistance.