Cannot use HTTPs service with USER AUTHENTICATION

[hotice_]

Hi,
I'm having trouble using the HTTPs service with a USER authentication rule.

HTTP works fine i get prompted for a l/p but as soon as I switch to HTTPS, i get absolutely nothing, and nothing in the tracker either


Using NGX R62 on IPSO 4.1 build 25

There is a solution on the SecureKnowledge but its for an older NG AI 55 version (although I DID try to implement the solution without success)

anyone?

[melipla]

Try to use a seperate rule for your https user auth rule [ie so there's only https listed as a service].

In Smartview Tracker you may not see the user auth logs after the initial auth if you're filtering on rule number, as subsequent matches for a user auth rule do not log the rule number that it matches.

Have you ever set up HTTPS userauth and had it work? On your management server, in $FWDIR/conf/fwauthd.conf do you have a line that starts with 443?

Which SK are you referring to?

Lastly, in some cases I've had better luck with a "Partially Automatic Client Auth" instead of using user auth.

[jamesliao]

As I know https was not support on user authentication in old version, I am not sure does it supoort on NGX version ?

[MarioL]

I wasn't aware that User Auth also supported HTTPS. I found the file you mentioned (sk14340).

You could always follow melipla's suggestion and do Client Auth with the Automatic bit.

Also, I'd be wary of using authentication if the credentials are sent in clear text, you should check that too.