HTTP and HTTPS

Similar Messages

• Web Authentication on HTTP Instead of HTTPS in WLC 5700 and WS-C3650-48PD (IOS XE)

  Hello,
  I have configured a Guest SSID with web authentication (captive portal).
  wlan XXXXXXX 2 Guest
   aaa-override
   client vlan YYYYYYYYY
   no exclusionlist
   ip access-group ACL-Usuarios-WIFI
   ip flow monitor wireless-avc-basic input
   ip flow monitor wireless-avc-basic output
   mobility anchor 10.181.8.219
   no security wpa
   no security wpa akm dot1x
   no security wpa wpa2
   no security wpa wpa2 ciphers aes
   security web-auth
   security web-auth parameter-map global
   session-timeout 65535
   no shutdown
  The configuration of webauth parameter map  is :
  service-template webauth-global-inactive
   inactivity-timer 3600 
  service-template DEFAULT_CRITICAL_VOICE_TEMPLATE
   voice vlan
  parameter-map type webauth global
   type webauth
   virtual-ip ipv4 1.1.1.1
   redirect on-success http://www.google.es
  I need to  login on web authentication on HTTP instead of HTTPS.
  If I  login on HTTP, I will not receive certificate alerts that prevent the users connections.
  I saw how to configure it with 7.x relesae but I have IOS XE Version 03.03.05SE and I don´t know how to configure it.
  Web Authentication on HTTP Instead of HTTPS
  You can login on web authentication on HTTP instead of HTTPS. If you login on HTTP, you do not receive certificate alerts.
  For earlier than WLC Release 7.2 code, you must disable HTTPS management of the WLC and leave HTTP management. However, this only allows the web management of the WLC over HTTP.
  For WLC Release 7.2 code, use the config network web-auth secureweb disable command to disable. This only disables HTTPS for the web authentication and not the management. Note that this requires a reboot of the controller !
  On WLC Release 7.3 and later code, you can enable/disable HTTPS for WebAuth only via GUI and CLI.
  Can anyone tell me how to configure web authentication on HTTP instead of HTTPS with IOS XE?
  Thanks in advance.
  Regards.

  The documentation doesn't provide very clear direction, does it?
  To download the WLC's default webauth page, browse to the controller's Security > Web Login Page. Make sure the web authentication type is Internal (Default). Hit the Preview button. Then use your browser's File > Save As... menu item to save the HTML into a file. Edit this to your liking and bundle it and any graphics images up into a TAR archive, then upload via the controller's COMMAND page.

• Error Message when installing Companion CD for HTMLDB 1.6 and HTTP Server

  Hi. First time forum user so bear with me.
  I'm not sure if this is the correct forum for this but the assistance of anyone who may be able to shed some light on the problem whould be greatly appreciated. I am having a problem when attempting to install the Companion CD for HTMLDB 1.6 and HTTP Server, details given below:
  The following Oracle components have been successfully installed
       Oracle 10gR2 Database.
       Oracle 10gR2 Database patch 10.2.03.
       Critical patch up date (security).
  The following Oracle component failed to install.
       Companion CD for HTMLDB 1.6 and HTTP server
  Scenario leading up to failure
       Extracted companion CD installation files to D:\oracle\utilities\Oracle_10_2_0_Companion
       Executed D:\oracle\utilities\Oracle_10_2_0_Companion\companion\setup.exe.
  The following error message is displayed in a "JAVA VIRTUAL MACHINE LAUNCHER" dialog box
       "Could not find the main event class. Program will exit."
  I have been attmepting to resolve this problem for over a week and have already checked the following with no resolution to the problem:
  Cause. This issue may have to do with two issues (and may occur more on Windows):-
  1. Within the ORACLE_HOME directory full pathname there is a space.
  2. The directory from where the software / patch is being installed has a space within the directory full
  pathname (where the file for the installation by default is named products.jar or products.xml).
  Solution. To implement the solution, please execute the following steps:-
  1. Rename the full pathname directory NOT to contain a space.
  2. Launch again the OUI... and verify if the problem occurs.
  Any further guidance would be greatly appreciated.
  Edited by: user10386555 on 03-Oct-2008 02:51

  Can you install using OUI from the RDBMS installation? IIRC, there is a problem using OUI on companion to install companion items.

• When converting over to HTTPS and PKI for clients, not all actions are available in configuration manager cpl

  I'm not exactly sure which forum heading this should go under so if this isn't correct please let me know or move it on my behalf.  
  So I am trying to setup Internet Based Client Management in SCCM 2012 R2 and have come across a few articles on how to do so.   I think I have mostly gotten it to work but I seem to be having a client issue when deploying new machines.  My already
  deployed servers seem to have picked up the PKI setting no problem.  In the past when I would deploy a new windows client everything would be fine.  When i converted over to PKI in my test environment I am now having issues when I go to deploy a
  new windows client. I don't get all of the Actions listed in the Configuration Manager control panel.  All I have are Discovery Data Collection, Machine Policy Retrieval and Eval, User Policy Retrieval and Eval, and Windows Installer Source list Update
  Cycles, before all of them would populate no problem.  I have let this machine sit here for several hours and nothing has changed yet.  It does say PKI for client certificate.  Sometimes when I would deploy new machines it would say NONE for
  Client certificate.  In my production environment it says self-signed.  I have found if i uninstall the client and re-install the client it does populate all of the cycles but I don't understand why it is not working on deployment.
  Ok so maybe not all the time that when i reinstall the client it fixes it.  I just did an uninstall and reinstall on a test client and all it has under actions are machine and user policy cycles.
  Does anyone have any ideas?

  Hi,
  I think SCCM client installed before the GPO applied, so you don't a certificate available when it is required.
  You can export and import the certificate by using MDT integration, try this blog for PKI part:
  How To: Build and Capture in Configuration Manager 2012 using HTTPS
  And in addition, you can upload the log to your onedrive so you can share with us.
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• Setting up a https connection between SAP CRM and genesys gplus adapter

  Hello All-
  We are integrating SAP CRM with genesys mysap gplus adapter. We are struck in setting up a https connection between sap and gplus adapter.
  Can anyone here help me out in this like how to get the SSL Protocol, keystore, keystore password,truststore and truststore password.
  Information abt Adapters server certificate. Do we need to configure the adapter for the proxy also?
  Any additional comment will help. Thanks in advance!

  Hello Vinod,
  Please refer the following OSS notes 564085.
  Please reward if helpful.
  regards,
  Muralidhar Prasad.C

• Logging HTTP and/or SOAP packets in standalong OC4J v10.1.3.2

  I'm running OC4J standalone v10.1.3.2 on RH5 linux. I'd like to know how to turn on logging so that all incoming HTTP data can be viewed.
  I've basically got a Web Service which is failing to execute from some clients (but not all) due to a SOAP11 version mismatch problem. If I could see the incoming HTTP and/or SOAP request then I could determine where the inconsistency is coming from.
  Here's an extract of the returned SOAP error:
  <faultcode>env:VersionMismatch</faultcode>
  <faultstring>Version Mismatch</faultstring>
  <faultactor>http://schemas.xmlsoap.org/soap/actor/next</faultactor>
  I've tried editing j2ee-logging.xml and set the logging level to FINEST and TRACE but it's still not logging out the HTTP traffic.
  Any ideas welcomed,
  Thanks

  Andy,
  Which log files are you looking at? There is a server.log that will be impacted when you set the logging level to FINEST. Since you want to look at http requests, have you considered using Fiddler on the client side? It's pretty verbose but you can see all sorts of info including data posted to forms.
  -Michael
  PS
  URL:
  http://www.oracle.com/technology/tech/java/oc4j/htdocs/oc4j-logging-debugging-technote.htmlTake a look at the "Debug Options in OC4J" section. There are several HTTP debugging options listed.
  Edited by: Michael F. Hardy on Dec 17, 2008 9:40 AM

• What is the difference between https: and http: at the beginning of the web address? Does this effect security when looking onto bank accounts?

  New to foxfire, and not very computer savvy. When enter search for bank account noticed the the web address came up with a http: rather than an https: as it normally does when I search from safari on MAC, or even at my PC at work. Not sure what the difference is but if it is a security thing than foxfire is no good for my use.

  In Firefox 4 and later you no longer have the Status bar that showed the padlock in previous Firefox versions.<br />
  The padlock only shows that there is a secure connection and doesn't guarantee that you are connected to the right server.<br />
  So you might still be connected to the wrong server if you make a typo in the URL and someone has claimed that mistyped URL.<br />
  The functionality of the padlock has been replaced by the [[Site Identity Button]] on the left end of the location bar.<br />
  See also:
  * http://www.dria.org/wordpress/archives/2008/05/06/635/
  * https://support.mozilla.com/kb/Site+Identity+Button
  * http://www.mozilla.com/en-US/firefox/security/identity/
  You can use this extension to get a padlock on the location bar.
  *Padlock: https://addons.mozilla.org/firefox/addon/padlock-icon/

• HTTP 401 received when running exRCA and authentication fails

  After upgrading Exchange 2013 to CU6 our ActiveSync functionality stopped (along with a few other things). I have been using ExRCA to troubleshoot and have spent several days looking at forums and trying different things out to get it working again but to
  no avail. Essentially when I enter valid account credentials it fails to authenticate and as a result I receive an 401 response.
  I have already checked Inherited permissions are enabled for the user account in AD. I have checked that the authentication for the Virtual directory is set to Basic with SSL required. (Have also tried with windows authentication enabled). I have recycled
  the ApplicationPool especially the MSExchangeSyncAppPool - That appears to be correctly configured and running under LocalSystem Identity. I have recreated the virtual directory using the reset feature in the EPC. Both internal and external URLs are set as
  well as the CAS server being assigned to the External URL.
  The report that I get: -         
  An ActiveSync session is being attempted with the server.
   Errors were encountered while testing the Exchange ActiveSync session.
   Additional Details
  Elapsed Time: 3721 ms.
   Test Steps
   Attempting to send the OPTIONS command to the server.
   Testing of the OPTIONS command failed. For more information, see Additional Details.
    Tell me more about this issue and how to resolve it
   Additional Details
  An HTTP 401 Unauthorized response was received from the server. This may be the result of invalid credentials or a configuration problem on the Exchange Server.
  HTTP Response Headers:
  request-id: 216790d5-03dc-4616-87c6-d196c870a6f0
  X-CalculatedBETarget: ex2013.domain.org
  X-FEServer: EX2013
  Content-Length: 0
  Cache-Control: private
  Date: Wed, 12 Nov 2014 16:13:10 GMT
  Server: Microsoft-IIS/8.5
  WWW-Authenticate: Basic realm="domain.org"
  X-AspNet-Version: 4.0.30319
  X-Powered-By: ASP.NET
  Elapsed Time: 3721 ms.
  I have failed request logging enabled and I am seeing numerous entries for some of the other services including ActiveSync and getting similar errors to the below: -
  ModuleName
  WindowsAuthenticationModule
  Notification
  AUTHENTICATE_REQUEST
  HttpStatus
  401
  HttpReason
  Unauthorized
  HttpSubStatus
  1
  ErrorCode
  No credentials are available in the security package
   (0x8009030e)
  Any thoughts or additional diagnostic steps will be appreciated.
  I tried recreating the backend virtual directory via EMC using the following command: - 
  New-WebApplication  -Site "Exchange Back End" -Name Microsoft-Server-ActiveSync -PhysicalPath "C:\Program Files\Microsoft\Exchange Server\V15\ClientAccess\sync" -ApplicationPool MSExchangeSyncAppPool -Force
  (didnt work...)

  Hi Joby 
  Thanks for getting back - tried your suggestion but still the same. 
  Attempting to send the OPTIONS command to the server.
  Additional Details
  An HTTP 401 Unauthorized response was received from the server. This may be the result of invalid credentials or a configuration problem on the Exchange Server.
  HTTP Response Headers:
  request-id: 53f6bea6-4ef2-463e-87a1-f2dfd6a7bcf8
  X-CalculatedBETarget: ex2013.xx.domain.org
  X-FEServer: EX2013
  Content-Length: 0
  Cache-Control: private
  Date: Mon, 24 Nov 2014 13:16:15 GMT
  Server: Microsoft-IIS/8.5
  WWW-Authenticate: Basic realm="xx.domain.org"
  X-AspNet-Version: 4.0.30319
  X-Powered-By: ASP.NET
  Elapsed Time: 681 ms.

• Web Clipping portlet and https

  We have an external ASP application that requires HTTPS authentication. We want to pull the application into portal via a Web Clipping portlet.
  However when we try start up web clipping studio with the https url we get the following error:
  'WCS-517 -- SSL handshake failed for HTTPS connection to URL https://icwwwd.cc.ic.ac.uk/spectrum/ict/services/software/shop/downloads/SoftwareShop.asp by method get'
  My questions are:
  1. Is it possible to use the web clipping portlet to access a secure page?
  2. If so does anyone know why we are getting this error?
  3. Assuming we can, how do we get portal to automatically log on to the application via https so users do not have to login twice i.e. once into portal and once into the asp application?
  Thanks
  Andrew

  Here is a more complete answer, cut and paste from the Oracle9iAS Portal Web Clipping Portlet User’s and Administrator’s Guide at
  http://portalcenter.oracle.com/pls/ops/docs/FOLDER/COMMUNITY/DOCTEAM/WEBCLIPPING/WEBCLIPV9025.PDF
  5.3 Configuring Security
  When a user navigates to a secure site, the Web site typically returns a
  certificate identifying itself to the user when giving secure information. If
  the user accepts the certificate, the certificate is placed into the list of trusted
  certificates of the browser so that a secure channel can be opened between
  the browser and that server. Like aWeb browser, theWeb Clipping Provider
  behaves as an HTTP client to external Web sites. In order for the Web
  Clipping Provider to keep track of trusted sites, it makes use of a file that
  stores the certificates of those sites, namely the ca-bundle.crt file.
  The shipped ca-bundle.txt is an exported version of the trusted server
  certificate file from OracleWallet Manager (OWM). The default trusted
  server certificate in OWM does not cover all possible server certificates that
  exist on theWeb. For this reason, when a user navigates to a secure server
  using HTTPS, the user may get an "SSL Hand-shake failed" exception in the
  Web Clipping Studio. To solve this problem, the ca-bundle.crt file
  needs to be augmented with new trusted sites that are visited. As a Portal
  Administrator, you must do the following to extend the shipped
  ca-bundle.crt file:
  1. Use a browser (preferably Internet Explorer) to download the root
  server certificate from each external HTTPSWeb site in BASE64 format
  that is visited, and is missing from the trusted certificate file.
  2. Use Oracle Wallet Manager (OWM) to import each certificate.
  3. Export the trusted server certificates into a file and replace the
  ca-bundle.crt file with that file.
  For more information about Oracle Wallet Manager, see Chapter 17 "Using
  Oracle Wallet Manager" in Oracle Advanced Security Administrator’s Guide in
  the Oracle9i Release 2 (9.2) documentation section on the Oracle
  Technology Network (OTN) (http://otn.oracle.com).
  =============
  So, if you have another certificate authority that you need to add, i.e., DOD certs, etc., you must follow the instructions above.

• Single Sign-on and HTTP Server not started

  I have installed oracle9iAS on SuSE Linux Enterprise Server 8 (SLES 8) which is certified by Oracle to run oracle9iAS. Everything was working propely after installation but when I restarted the server, the listener, the iasdb instance, and the EM started properly but when I went to http://servername:1810 and clicked on start all i got them all started but the HTTP Server and the Single Sign-on. When I tried to start the HTTP Server individually i got the following error:
  oracle.sysman.emSDK.util.jdk.EMException: The opmn request has failed. From opmn: HTTP/1.1 204 No Content Content-Length: 0 Content-Type: text/html Response: 0 of 1 processes started. Check opmn log files such as ipm.log and ons.log for detailed.
  I checked the log and its showing the following:
  03/10/25 16:44:23 Connection 0,192.168.10.11,6200 message missing 'Content-Lengt
  h'
  GET /dms0/Spy?recurse=all&format=xml&operation=get&value=false&units=true&descri
  ption=true&name=%2F HTTP/1.1
  Host: linux2.future:6200
  Connection: Keep-Alive, TE
  TE: trailers, deflate, gzip, compress
  User-Agent: RPT-HTTPClient/0.3-3
  Cache-Control: no-cache
  Pragma: no-cache
  Accept-Encoding: deflate, gzip, x-gzip, compress, x-compress
  I tried to start it from command line with the command
  $dcmctl start -ct ohs
  and it returned ADMN-906025
  Anyone can help me solving this problem??

  This error Can be caused by a syntax error in your httpd.conf file, check it / correct it try reloading OHS.
  Ensure that emctl is not running when you run any dcmctl commands! If you have already run any dcmctl commands with emctl running that can cause your problem - if so to fix it solution is really to re-install.

• Problems with Safari and Firefox (HTTP?)

  Problems with Safari and Firefox (HTTP?)
  On a laptop G4, 10.5.8 and Safari 5.02 I experience the following:
  On the account of my oldest daughter everything works fine, i.e. wireless internet works and no problems with mail or safari.
  On the same laptop, on the account of my other daughter, the wireless is OK, she can mail etc. But safari nor firefox works. It says: can’t find server (whatever site) and in the activity window it looks if safari tries to open files (in the safari preferences-folder) in stead of http. Same applies to Firefox, so maybe it has more to do with HTTP in general?
  What goes wrong? What to do? I tried the following on the host terminal (tips from Apple)
  defaults write com.apple.safari WebKitDNSPrefetchingEnabled -boolean false
  and
  defaults delete com.apple.safari WebKitDNSPrefetchingEnabled
  but that did not help,
  Nanne

  I'm still wondering why it happens now at this moment in time...
  PC does seem to be a bit odd & inconsistent, the few times I've tested with it, at least so far as we content filtering goes; and if I remember rightly, you're not the first to report previously ok settings suddenly preventing some or all internet until pc is switched off altogether.
  It may work when re-enabled

• Need help on Socket and HTTP

  Hi,
  I need help ... please ... I have to use socket and not HTTPURLConnection
  I try to connect with a socket to a web server (apache2) and request one page but two times.
  The first time it works well but the second one it doesn't ... I get a null message.
  Why ?
  Does the server close the socket as soon as the page is sent ?
  If it doesn't how I can continue sending and receiving data on the same socket ?
  Here is my code:
  package test;
  import java.net.*;
  import java.io.*;
  public class Test
  private String laRequete = new String(
  "POST http://localhost:5577/Test/ HTTP/1.0\r\n"+
  "Host:localhost:5577\r\n"+
  "\r\n");
  PrintWriter laSortie;
  BufferedReader lEntree;
  Socket laSocketTCP;
  public Test()
  String tmp;
  try
  laSocketTCP = new Socket("localhost", 5577);
  laSortie = new PrintWriter(laSocketTCP.getOutputStream());
  lEntree = new BufferedReader(new InputStreamReader(laSocketTCP.getInputStream()));
  laSortie.println(laRequete);
  laSortie.flush();
  // Premier essai OK
  System.out.println(lEntree.readLine());
  while((tmp = lEntree.readLine()) != null)
  System.out.println(tmp);
  // Second essai => Not OK
  laSortie.println(laRequete);
  laSortie.flush();
  System.out.println(lEntree.readLine());
  while((tmp = lEntree.readLine()) != null)
  System.out.println(tmp);
  catch (Exception e)
  e.printStackTrace();
  public static void main(String args[])
  Test tp = new Test();
  Here is the result of the execution
  HTTP/1.1 200 OK
  Date: Wed, 29 Sep 2004 08:35:35 GMT
  Server: Apache/2.0.51 (Win32)
  Last-Modified: Wed, 29 Sep 2004 08:27:57 GMT
  ETag: "23a46-9a-56c93f9a"
  Accept-Ranges: bytes
  Content-Length: 154
  Connection: close
  Content-Type: text/html; charset=ISO-8859-1
  <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
  <HTML>
  <HEAD>
  <TITLE> Index Test 1 </TITLE>
  </HEAD>
  <BODY>
  Test 1
  </BODY>
  </HTML>
  null
  Thanks, bye.

  Send an HTTP 1.1 request instead of a 1.0 request.
  HTTP 1.0 does not support keeping the connection open, so yes, the server closes the connection.
  Dave.

• Sun Web Server Reverse Proxy and Weblogic HTTP to HTTPS redirection

  Hi,
  I am currently testing reverse-proxy from SJSW 7.0 update 5 to Weblogic server but I have encountered an issue.
  I have configured a context root to be forwarded to weblogic:
  Web Server: www.server.com
  URI: /path
  Reverse Proxy URL: wlserver:9000
  When I access https://www.server.com/path, I am getting the correct page. The issue is, the weblogic server is configured to redirect HTTP access to HTTPS, i.e., when I access http://www.server.com/path, it should be redirected to https://www.server.com/path. However, that is not the case. What happens is that I am being redirected instead to https://www.server.com/.
  If I don't use reverse proxy, that is, if I use the libproxy.so from weblogic, I get the correct redirection.
  Would appreciate it very much if someone can help me troubleshoot this issue.
  Thanks in advance!
  Edited by: agent_orange on Jul 29, 2010 2:30 AM
  Edited by: agent_orange on Jul 29, 2010 2:31 AM

  I am not sure, how you have configured your reverse proxy since you didn't attach / refer your current configuration file. this is how I would do it..
  - create a new configuration (using web server 7 admin gui , within configuration wizard, disable java option if you plan to use web server 7 only for reverse proxy)
  - select this new configuration and go to reverse proxy and try to reverse proxy / to the origin server.
  that is all it should need.
  your obj.conf or <hostname>-obj.conf depending on your configuration should look like following snippet
  <Object name="default">
  AuthTrans..
  NameTrans fn=map from="/" to="/path" name="reverse-proxy-/"
  </object>
  <Object name="reverse-proxy-/">
  Route fn=....
  Service ..
  </Object>
  this is all you should need..
  However, if you wanted to add complexity to your configuration, you could do some thing like
  <Object name="default">
  Auth..
  <If defined $security>
  NameTrans fn=map from="/" to="/path" name="reverse-proxy-/"
  </If>
  </Object>
  <Object name="reverse-proxy-/">
  Route...
  </Object>

• Add Device sees wireless but printer is wired and can reach the HTTP page on wire

  I installed my new Officejet 8000 Pro A809 with an ethernet but when I run the HP "Add Device" Wizard, it trys to install it as wireless even though I select wired and the install fails.
  I can see the http page for the printer and it shows all sane information about my printer so I believe the ethernet is actually working.
  I am running WinXP with the FW off. The printer is on the same switch as my PC & of course I can see the http page
  In the wizard, although I selected "Wired" of course the wire is working, the "Found Network Printers" page shows that its connection is wireless. None-the-less I click next and a screen comes up for "Starting Network Services" & it rolls though topology, wireless strength, etc. and to sending an SLP request to the IP then it fails & shows an picture of a wireless signal and a big red X.
  The HP Home Network Diagnostics Utility says that software to connect to printer over network is missing BUT I ran the Wizard all the way though a second time, I selected that my device was not online and it finished OK. I ran the UPDATE from the Utility & it did a security update; I rand it again and it did not find any.
  Although my FW is off, I checked the ports that the FW Guide says are needed:
  I can telenet to the printer on ports 9100 & 92200
  I cannot telnet on ports 137,139 or 427
  Ideas?
  Thanks!
  Larry Holt
  This question was solved.
  View Solution.

  OK, plugging the Ethernet cable into the printer should turn off the printer's wireless radio, but in case it did not, click the button near the blue light (or go to Setup > Network > Turn off wireless radio on the front panel).
  Now, don't bother with the Add Device wizard, let's just add it manually:
  Verify that you can browse to the printer's internal web page by its IP address.  If you cannot, disable your security system's firewall (not Windows firewall, it is usually not in the way).
  1. Click "Start" button --> Printers and Faxes.
  2. Under Printer Tasks, click "Add Printer".
  3. Click "Next" button on the Add Printer Wizard window.
  4. Select "Local printer attached to this computer". Deselect "Automatically detect and install My Plug and play printer". Click "Next".
  5. Under Select a Printer Port option, select "Create a new port" and select "Standard TCP/IP Port" and click "Next" button.
  6. In the "Welcome to the Add Standard TCP/IP printer port wizard" make sure that the printer is turned on and connected to same network that your computer is connected to. Click "Next" button.
  7. Under "Add Standard TCP/IP Printer Port" enter the printer's IP address. Click "Next" then click "Finish".
  8. Now, select HP from the list of manufacturers, select your printer from the list of Printer models and click 'Next' button.
  9. If you can't find your printer, you'll need to find the install CD and use the "Have Disk" option to select one of the hp*.ini files. Alternatively, you can select another HP printer model from the same type.
  10. Add the print spooler name and click "Next".
  11. Click "Next"
  12. Click "Next" and then "Finish"
  Say thanks by clicking "Kudos" "thumbs up" in the post that helped you.
  I am employed by HP

• Https front end and http backend

  Hi there....I am having a small issue....I have a web app that is https based....I have installed the cert on the CSS, and DNS for this app points to the VIP....the client is wanting to have an https front end, and then load balance in http to the backend servers....the issue I am running into is that this only works if I have an active port 80 rule on that same VIP....if I suspend the port 80 rule and only leave the port 443 rule active on that VIP, it doesn't work....please see appropriate config portions below....Thanks in advance!
  Sandeep
  ANy suggestions? I have been trying this for a couple of days now...it works fine if the backend sessions are also https, but the client has changed their requirement....
  ssl-proxy-list SSL1
  ssl-server 1
  ssl-server 1 rsakey app1-test
  ssl-server 1 rsacert app1-test
  ssl-server 1 vip address 10.19.55.10
  ssl-server 1 cipher rsa-with-rc4-128-md5 10.19.55.10 81
  backend-server 1
  backend-server 1 port 81
  backend-server 1 server-ip 10.19.55.132
  backend-server 1 ip address 10.19.55.132
  backend-server 2
  backend-server 2 port 81
  backend-server 2 server-ip 10.19.55.133
  backend-server 2 ip address 10.19.55.133
  backend-server 3
  backend-server 3 port 83
  backend-server 3 server-ip 10.19.55.132
  backend-server 3 ip address 10.19.55.132
  backend-server 4
  backend-server 4 port 83
  backend-server 4 server-ip 10.19.55.133
  backend-server 4 ip address 10.19.55.133
  backend-server 5
  backend-server 5 port 85
  backend-server 5 server-ip 10.19.55.132
  backend-server 5 ip address 10.19.55.132
  backend-server 6
  backend-server 6 port 85
  backend-server 6 server-ip 10.19.55.133
  backend-server 6 ip address 10.19.55.133
  active
  service webserver002:81
  ip address 10.19.55.132
  port 81
  keepalive port 2199
  keepalive type tcp
  protocol tcp
  active
  service webserver003:81
  ip address 10.19.55.133
  port 81
  keepalive port 2199
  keepalive type tcp
  protocol tcp
  add ssl-proxy-list SSL1
  active
  service webserver002:83
  ip address 10.19.55.132
  port 83
  add ssl-proxy-list SSL1
  keepalive port 2399
  keepalive type tcp
  protocol tcp
  active
  service webserver003:83
  ip address 10.19.55.133
  port 83
  keepalive port 2399
  keepalive type tcp
  protocol tcp
  add ssl-proxy-list SSL1
  active
  service webserver002:85
  ip address 10.19.55.132
  port 85
  add ssl-proxy-list SSL1
  keepalive port 2599
  keepalive type tcp
  protocol tcp
  active
  service webserver003:85
  ip address 10.19.55.133
  port 85
  keepalive port 2599
  keepalive type tcp
  protocol tcp
  add ssl-proxy-list SSL1
  active
  service SSL_Front
  slot 2
  type ssl-accel
  keepalive type none
  add ssl-proxy-list SSL1
  active
  owner app1-test
  content app-test_back
  vip address 10.19.55.10
  add service webserver002:81
  add service webserver003:81
  add service webserver002:83
  add service webserver003:83
  add service webserver002:85
  add service webserver003:85
  balance aca
  protocol tcp
  port 81
  active
  content app1-test_front
  vip address 10.19.55.10
  application ssl
  add service SSL_Front
  protocol tcp
  port 443
  advanced-balance ssl
  balance aca
  active

  Thanks for the quick reply....there is another port 80 rule setup for that vip....I was using that to test with the app until I got the front end https rules working....
  my port 80 rules just says listen to 10.19.55.10 on port 80 and load balance btwn the webervers on port 8x in the back end...
  I am trying to do https front end and http backend....
  no where in my SSL config have I configured port 80....but when I suspend that rule it all fails....
  I am wondering if the backend server sessions are happening properly?
  I don't fully get what you mean by "You need to have the rule in port 443 to match traffic coming from the client and the clear text rule (port 81) to match traffic already decrypted coming from the SSL module"
  Haven'tI done that?
  Thanks again!
  Sandeep

• Normally when I go to a website the site automatically opens, now with the updated Firefox I have to go to the http: line and highlight and turn arrow to red. Why?

  The website shows on the bottom line with other websites visited, but will not open automatically, I have to go up to the mozilla.com toolbar and highlight the website and then go to the arrow and highlight it so that it turns red. Uses a lot of extra time.

  You may have a user agent that is corrupted.
  *http://browserspy.dk/useragent.php
  See also:
  *https://support.mozilla.org/kb/Websites+or+add-ons+incorrectly+report+incompatible+browser