How do you prevent untrusted certificate errors when not using SSL?

<< Back to Knowledge Search



If a ProxySG is configured to be both a forward and a reverse proxy, and SSL intercept is not being used, it is possible to see the untrusted certificate errors when the forward proxy accesses a HTTPS site. 

Even though SSL intercept is not being used, if a reverse proxy is configured, the SSL component of SGOS is active and can detect an untrusted certificate. 

In order to prevent this error, an SSL Access layer can be added, with a rule to prevent server certificate checking. It is not necessary to have an SSL Intercept layer.

To complete this action:

  1. From Policy > Add SSL Access Layer
  2. Right Click the Action value and select Set
  3. Select NewSet Server Certificate Validation
  4. Select Disable server certificate validation > Select OK > Select OK
  5. Select Install policy


Additional Information
Bug Number
InQuira Doc IdFAQ2252

Article Feedback

Hide Properties
First Published      10/01/2014
Last Modified      10/01/2014
Last Published      10/01/2014
Article Audience
Product      ProxySG
Article Number      000010798
Was this helpful?
Previous MonthNext Month