SSL Policy Errors

You may receive a warning telling you that security issues were encountered, with possible problems being:

  • Remote Certificate Chain errors (A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.)
  • Remove Certificate name mismatch (https://localhost:10001)(CN=PasswordServer_Temporary_Placeholder_Certificate)

 

This error is most common if you are using the self-signed certificate:

                  SSL-Policy-Error-Popup.png

Possible Causes

  • you are using the default self-signed certificate
  • you are using a certificate that doesn't match your FQDN
  • your certificate or server address has changed
  • your certificate may have been intercepted and you are the victim of a man-in-the-middle attack

Checks

Check that your certificate thumbprint matches your server and choose accordingly whether to continue or not. If you are being attacked and you continue, all your secret data will be visible.

For security reasons, we recommend using PPASS with an FQDN and third-party signed certificate.

By default, in an secured intranet environment, you should generally be safe even if using the default certificate.

Decision to Continue

  • If you are certain that you are securely connected to your server (thumbprint displayed by the client matches the server thumbprint), you can continue.
  • However, if you are not sure about having established a secure connection, do not continue or you may you expose your secret data; check with your administrator for assistance.
  • If you do not wish to see this message again until the thumbprint changes, click "Do not show this message again for this certificate".

Related:

Trust Warning

Tag page
You must login to post a comment.