If the https traffic is encapsulated in a http datagram destined to TcP port 8080 "https traffic to explicit proxy devices", can the SSL Orchestrator decrypt or not decrypt this traffic based on the AD group of the user. Of course providing that the APM module has authenticated the user and obtained her/his AD group membership.
