Squid 2.7 - HTTPS not working

SQUID (default yum install squid on CentOS 5.8)

root@host [/etc/squid]# squid -v

Squid Cache: Version 2.6.STABLE21

configure options: '--build=i686-redhat-linux-gnu' '--host=i686-redhat-linux-gnu' '--target=i386-redhat-linux-gnu' '--program-prefix=' '--prefix=/usr' '--exec-prefix=/usr' '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--includedir=/usr/include' '--libdir=/usr/lib' '--libexecdir=/usr/libexec' '--sharedstatedir=/usr/com' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--exec_prefix=/usr' '--bindir=/usr/sbin' '--libexecdir=/usr/lib/squid' '--localstatedir=/var' '--datadir=/usr/share' '--sysconfdir=/etc/squid' '--enable-arp-acl' '--enable-epoll' '--enable-snmp' '--enable-removal-policies=heap,lru' '--enable-storeio=aufs,coss,diskd,null,ufs' '--enable-ssl' '--with-openssl=/usr/kerberos' '--enable-delay-pools' '--enable-linux-netfilter' '--with-pthreads' '--enable-ntlm-auth-helpers=SMB,fakeauth' '--enable-external-acl-helpers=ip_user,ldap_group,unix_group,wbinfo_group' '--enable-auth=basic,digest,ntlm,negotiate' '--enable-negotiate-auth-helpers=squid_kerb_auth' '--enable-digest-auth-helpers=password' '--with-winbind-auth-challenge' '--enable-useragent-log' '--enable-referer-log' '--disable-dependency-tracking' '--enable-cachemgr-hostname=localhost' '--enable-underscores' '--enable-basic-auth-helpers=LDAP,MSNT,NCSA,PAM,SMB,YP,getpwnam,multi-domain-NTLM,SASL' '--enable-cache-digests' '--enable-ident-lookups' '--with-large-files' '--enable-follow-x-forwarded-for' '--enable-wccpv2' '--enable-fd-config' '--with-maxfd=16384' 'build_alias=i686-redhat-linux-gnu' 'host_alias=i686-redhat-linux-gnu' 'target_alias=i386-redhat-linux-gnu' 'CFLAGS=-D_FORTIFY_SOURCE=2 -fPIE -Os -g -pipe -fsigned-char' 'LDFLAGS=-pie'

CONFIG FILE

• http_port 3128
• auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwordfile
• auth_param basic children 5
• auth_param basic realm Squid proxy-caching web server
• auth_param basic credentialsttl 2 hours
• auth_param basic casesensitive off
• acl SSL_ports port 443 563
• acl Safe_ports port 80 # http
• acl Safe_ports port 21 # ftp
• acl Safe_ports port 443 563 # https, snews
• acl Safe_ports port 70 # gopher
• acl Safe_ports port 210 # wais
• acl Safe_ports port 1025-65535 # unregistered ports
• acl Safe_ports port 280 # http-mgmt
• acl Safe_ports port 488 # gss-http
• acl Safe_ports port 591 # filemaker
• acl Safe_ports port 777 # multiling http
• acl CONNECT method CONNECT
• acl ncsa_users proxy_auth REQUIRED
• acl all src 0.0.0.0/0.0.0.0
• http_access allow ncsa_users all
• http_access deny !Safe_ports
• http_access deny CONNECT !SSL_ports

ALSO TRIED

• http_access allow Safe_ports
• http_access allow CONNECT SSL_ports

PROBLEM

I can't access https websites.