I notice our firewall reports:
Certificate Chain is not signed by a Trusted CA.
Certificate DN: 'CN=TrustedSourceServer_IMQA01'
and I cannot get the web control to talk to GTI. I have added all the known sites to the https inspection exception list - but need to understand how to progress this matter, any further - I have added the GTI addresses to the https bypass list but this self signed cert is a problem!