If SSL Inspection is not a feasible option for your organization, you can block traffic to sites that use HTTPS connections through:
To leverage this option:
If you block HTTPS traffic without enabling SSL Inspection, two common deployment scenarios are possible.
To configure the service to globally block sites in predefined or custom URL categories, log in to the service and do the following:
1. Go to Policy > Web > SSL Inspection.
2. Under If SSL Inspection is Disabled, Block HTTPS to these Sites, configure the following:
3. Click save and activate the change.