Random HTTPS access
I've just taken over a primary school with Server 2008 r2 and win7 clients. When I try to connect to https:\\fronter.com\leicestershire some computers work fine and some refuse to connect it's the same with any https site. Http sites work fine.
As it's a primary school they logon using a generic user ie year1 with no password, would this cause the problem?
When I logon locally to a computer it works evertime on any pc, so it must be a restriction from the server.
Any ideas how I can tackle this problem?
I don't believe you can set a restriction via Group Policy to block HTTPS Traffic for Users. If there is i would assume it would be under the Internet Connections Node in GPO Manager, If you look via GPO Manager you will be able to see what rules are being applied to those users. But to be quite honest i don't think this is where the problem lies.
Have you tried adding that address to the Trusted Sites list (via Group Plolicy of you like or/ manually) ? to see if it works then?
Could it be a difference in how invalid https certificates are handled or us the behaviour the same on any secure website?
Also, what firewall is being used? We run a more restrictive firewall/web filtering for our generic year based accounts.
Thanks for the replies.
I haven't tried the setting trusted sites via GPO but I will do although it doesn't explain why it works on some computers and not others when they are logged on as the same user. The firewall is off on the pc's i've tried. All the https sites i've tried have failed so i'm not certain its dodgy certificates
Have you checked the proxy settings? It's possible to set different proxies for HTTP and HTTPS, so if the settings are not enforced by Group Policy, a wrong setting could affect one and not the other.
The proxy wasn't correct so I corrected it for all computers but it didn't fix the problem.
Do you have a firewall/web filtering other than on the pc's themselves? I would be surprised if the only firewalls were on the pcs - possibly on another server, standalone box or external ie via lea? We run a 3 tier firewall - on pc/servers, a back firewall which also provides web filtering that is part of the domain and an external firewall, a dedicated hardware firewall outside the domain.