I work for a company that has an antivirus solution that scans all incomming and outgoing http(s) traffic. in case of https, the virusscanner actually does a man-in-the-middle attack on the https traffic. For the normal (workplace-it dept managed) web browsers, this is enabled by placing an extra root certificate in the browser. This certificate can be used by the virusscanner to sign the ssl certificates that it generates ofr each connection.
Now every time I start IntelliJ, I have to click trough multiple http security warnings (Because IntelliJ e.g. tries to look for updated plugins) I understand that there actually IS a man in the middle, so I'd like to do the same trick as with the browser. Just clicking on accept won't do the trick because a new ssl certificate will be generated each time, so on next startup, I'll have the same trick. Just configuring IntelliJ to ignore all ssl warnings also won't do the trick because I do want to be able to distinguish between the man in the middle that I trust, and the one I don't.
I also tried adding the root certificate to the (cacerts) truststore that is mentioned in the ssl warning popup screen, and I have also added it to the cacrts truststore that's part of the jdk that comes with intellij.
Does anyone have an idea on how to fix this?
Could it be that this truststore is ocasionally overwritten? (At a certain point, I thought that it did work, but than later the ssl warning still came back)