6/25/2023 0 Comments Ca secure browser download![]() ![]() The workaround is implemented as follows:ġ) From a workstation behind the FortiGate with SSL deep inspection enabled, visit the affected web site.Ģ) From a web browser, download the affected web site's invalid Entrust root CA certificate as follows: This workaround should be considered a short-term fix before the web site administrator implements the solution above on their end. On FortiGate, the workaround is to download the invalid Entrust root CA certificate from the affected website via a web browser and then adding it to FortiGate's trusted CA list. The solution to this issue is for the website's administrator to remove the invalid Entrust root CA certificate from the web server and replace it with a valid Entrust root CA certificate, or to call Entrust for further assistance. This issue can be confirmed by using the URL of the affected HTTPS site with an online SSL checker website like SSL Labs' SSL Server Test ( ) or SSL Shopper's SSL Checker ( ), and observing the checker's result that the certificate chain is incomplete or the certificate is not trusted in all browsers.
0 Comments
Leave a Reply. |