Solved

Certificate errors on all browsers when trying to access secure sites

Posted on 2010-09-08
5
1,258 Views
Last Modified: 2012-06-27
We have just setup a new TMG forefront server and since I presume some change was made, we are all getting the following message when trying to access legit secure sites such as the bank sites.

"To help protect your security, Internet explorer has blocked this website from displaying the content with security certificate errors. Click here for options."

You can show blocked content but is is TMG that is causing this issue?
0
Comment
Question by:Jamesm007
  • 3
  • 2
5 Comments
 
LVL 65

Expert Comment

by:rockiroads
ID: 33632587
I assume this is IE? did u try changing the security settings?

first give this a try

tools->internet options->security tab->internet->custom level_>find display mixed content and set to enable

or if running on trusted sites

tools->internet options->security tab->trusted-> click on sites then add your websites
0
 
LVL 1

Accepted Solution

by:
Jamesm007 earned 0 total points
ID: 33632602
I just worked it out, It seems that after turning off allow HTTP inspection ins forefront this has resolved the issue!

I dont recall turning it on
0
 
LVL 65

Expert Comment

by:rockiroads
ID: 33632610
im not too familiar with forefront but is there a security wizard?

I was reading this and it talks about https inspection. is this something you have dealt with? http://www.microsoftnow.com/2010/06/blocking-skype-and-other-im-protocols-in-forefront-tmg.html
0
 
LVL 65

Expert Comment

by:rockiroads
ID: 33632616
oh, beaten me to it :) I was searching the net trying to find solutions to your problem. Well hopefully the link given gives you some insight to https inspection. I think it needs the web access policy configuring to make it more secure.
0
 
LVL 1

Author Comment

by:Jamesm007
ID: 33633571
yes thanks, I think someone internally has been playing with my servers and has changed something as it was working yesterday and problem occured this morning :(
Too many techs, no one willing to own up!
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now