View previous topic :: View next topic |
Author |
Message |
thomasb111
Joined: 24 Apr 2008 Posts: 10 Location: Sweden
|
Posted: Sun May 18, 2008 6:31 pm Post subject: Free sites and SSL |
|
|
Hello,
I've got a problem with exception free sites. I've set up two different domains as free sites kerfi.com and kerfi.se. There is no problem accessing these sites using normal http on port 80 but if I try to access for example our mail system where I must use https I first get an information-window which says that there is a problem with the certificate and then if I continue I get to the FirstSpot login-page.
A check with FireFox identifies the certificate not as out SSL-certificate from the mail.server but some self-signed certificate which I suspects comes from the Apache in FirstSpot
On the other hand if I try to access our Citrix-environment which is also protected by SSL there is no problem at all and I can even run ICA-applications without being logged in.
We're having the same problem at a customer site which we installed FirstSpot for guest-access to their wireless network, some https sites work and others don't.
Do you have any idea as to what can be the problem ?
Please respond as soon as possible since the customer having this problem needs to use FirstSpot temporarily while moving offices tomorrow.
Best regards
Thomas Björklund
Kerfi AB |
|
Back to top |
|
|
thomasb111
Joined: 24 Apr 2008 Posts: 10 Location: Sweden
|
Posted: Sun May 18, 2008 8:16 pm Post subject: |
|
|
Hello,
Found the answer to the problem!
If you have a site https://a.b.com you have to access as a free site you have to both put b.com in allowed domains and the IP-address of a.b.com into allowed IP-addresses. If you don't you will be redirected to port 5790 and from there to the login-page.
Is this "by design" ?
If so maybe You could update the documentation on how exception free sites work.
By the way I couldn't find an explanation for "Redirect unauthenticated access for port 80 & 443 only" under authentication server in the documentation. I think this means that if yes is marked only ports 80 & 443 are allowed when you try to access a free site otherwise all ports are allowed. Is this how it works ?
Best regards
Thomas Björklund
Kerfi AB |
|
Back to top |
|
|
alan Forum facilitator
Joined: 26 Sep 2003 Posts: 4435
|
Posted: Mon May 19, 2008 4:02 am Post subject: |
|
|
1) For https site, you need to enter the IP directly (instead of domain)
2) See http://www.patronsoft.com/forum/viewtopic.php?p=4990#4990 (restricted_redirect) for the explanation for feature "Redirect unauthenticated access for port 80 & 443 only". _________________ ~ Patronsoft Limited ~ |
|
Back to top |
|
|
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|
Powered by phpBB © 2001, 2005 phpBB Group
| |