SSL Certificate Error
The certificate is not trusted because it is self signed.
The certificate is only valid for localhost.localdomain.
The certificate expired on 20/08/2009 10:33.
Can anybody tell me why we have suddenly started getting this error when accessing certain https: sites. This being particularly annoyning for some external careers bods who need to accces thier citrix gateway. Also getting it for Skype, Twitter etc. I have let the sites in question through the synetrix netsweeper control panel and they have been working ok. Also we have an ISA box but I have tested this either side of ISA with same results
Is it on any SSL Site? Its a bit weird to be on all SSL Sites as the certificates are usually unique to that site, are you doing any fancy tunnelling or SSL monitoring or something perhaps like a MIM on the SSL traffic and that's your MIM unit?
What about your filter policy to block unsuitable sites? Has it been modified perhaps to block https??? Let's say if you add to the black list a site starting with https://, the behaviour may be to start blocking all sites starting with https://. It will not block them completly, but you'll get a simlar problem to the one you are having.
At least this is how our filter works!! funny sometimes
thanks to maestromasada.. added https:// to allow filter and it worked for skype and twitter.. just got to try careers bods now.. never had to do that before tho so maybe synetrix issue?
Synetrix! that sounds familiar. Glad you got it working.
The problem is when the kids find an https:// proxy anonymizer: it can't be blocked!! they have to re-categorise at their end.