Cant see the Continue to website option on HTTPS site - IE8

On our Citrix XenApp 6 published Desktop environment (Server 2008 R2), we notice many https sites show the following msg
 https issueThere should be a continue to this website option.
MayogroupAsked:
Who is Participating?
 
ShmoidConnect With a Mentor Senior EngineerCommented:
Understood. Can you access the CDP location from a browser?
0
 
csenseCommented:
Try:
- go to Internet Options in IE8.
- click on the advanced tab.
- scroll down to the Security section and untick "Check for publisher's certificate revocation" and "Check for server certificate revocation"

This should let you access the website.


0
 
MayogroupAuthor Commented:
Same result.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
csenseCommented:
Did you restart the browser?
0
 
MayogroupAuthor Commented:
I did.
0
 
ShmoidSenior EngineerCommented:
If a certificate is expired or has a name mismatch you will get the option to continue. However, in this case the messaging is saying the certificate has been revoked. That is the reason continue in not an option.

Can you confirm that the sites in question have a valid cert if browsed from a non VDI. If so, it is likly that the VDI's simply can't access the certificate revocation list (CRL). However, if that is the case I'm not sure why csense's suggestion did not work.
0
 
MayogroupAuthor Commented:
Have tested the site on my local machine and several others. It works fine. It's just our XenApp published desktop environment that it doesnt work.
0
 
ShmoidSenior EngineerCommented:
Do the XenApp published desktops have any restrictions as to how they are allowed to access the internet? Maybe firewall, proxy etc.?  

Try this test. From you local machine that works fine access any https site, then view the attributes of the certificate and get the CRL distribution point (CDP).  On the XenApp published desktop try the CDP URL in a browser. If you cannot access it that is probably the problem. But again, if that is the case, csense's suggestion should provide a work around.

Let us know of any other details you uncover.
0
 
MayogroupAuthor Commented:
The proxy, firewall etc are the same for both local machines and Xenapp servers.
I was assuming it is an IE8 issue.
0
 
ShmoidSenior EngineerCommented:
Were you able to try checking the URL for CDP?  Can you roll back to IE7 on one of the VDI's just as a test?

While it certainly could be IE8 it seems more likely that it's something to do with reaching the location of the CRL so that validation of  the certificate can take place.
0
 
MayogroupAuthor Commented:
Works fine in IE8 on all local client machines. Is just the XenApp server Published desktop envionment. Same on all XenApp servers. Uses same proxy server.
0
 
MayogroupAuthor Commented:
I can
0
 
MayogroupAuthor Commented:
The CDP for some reason was added under untrusted sources.
After removing it, this site worked again.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.