Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
279
Views
0
Helpful
2
Replies

FWM-1 (ver 3.1) wrong server's info sent back

Gongyuan Yao
Level 1
Level 1

‎09-08-2009 05:53 AM - edited ‎03-11-2019 09:13 AM

We have 6500 with “WS-SVC-FWM-1 6 ports Firewall Module Rev. 3.0” (FWSM Firewall Version 3.1(13)

Device Manager Version 5.0(3)F) . There is a problem regarding accessing server behind this firewall. The scenario likes this: user(client) is using URL (https) to access server, firewall will go through SSL for authentication with client, finally, client machine has this server's certificate. Our engineer has configured FWSM not issue “user accept” prompt if the authentication success. But we found that FWSM will send certain info back with server's ip address instead of URL, this causes client browser (IE 7) pup up a window to indicate that “there is a problem with this website's security certificate”. User has to click “Continue to this website” to connect to server. Is this a known issue? Any help would be greatly appreciated.

Labels:
0 Helpful
2 Replies 2

Yudong Wu
Level 7
Level 7

‎09-08-2009 09:54 AM

This indicates that the client browser does not trust this certificate.

I am not sure if IE7 is the same, but you can try something similar as below to install this cert:

When you get that pop up window, click "view certificate" button to see what cert it is and then you can install it in "Trusted Root Certification Authorities" folder. Next time, you won't see this.

0 Helpful

Gongyuan Yao
Level 1
Level 1
In response to Yudong Wu

‎09-08-2009 12:33 PM

Hi,

Thank you so much for your response. The issue is that as FWSM, it should return server's URL instead of server's IP address. In other browser, you might see "transition display window" (blank). Someone told me there was a bug id for this one, I just can not find it. Do you know whether this is a known issue in FWSM sw rel?

Again, Thank you so much for your time and help.

gy

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card