iis - Does a browser need access to the Internet to browse an internal secured site with SSL? -


i have secured website using network solutions ssl cert. website can accessed computers in environments in company have access internet. (iis redirects http calls https). have browser in locked down environment trying access same website using https. locked down environment doesn't have access internet ports 80 , 443 open website's server , verified responses telneting ports 80 & 443. (not related error anyways). iis server has access internet.

the response in ie shown below. ie problem in doesn't have internet access , can't connect network solutions (ns) verification or because of maybe missing root cert ns? ns known authority unlikely.
(i troubleshooting webapi calls using https in case decides not programming question. have make ie work correctly on same machine before @ webapi stuff)

enter image description here

tl;tr: no internet access needed check certificate on internal sites, there edge cases.

there no internet needed access internal site has certificate signed internal ca. there no internet access needed in cases if internal site has certificate signed common public (i.e. external ca). there might slowdown in case since might try check online revocation information in cases continue if cannot reach server revocation checks. might fail if certificate ev certificate or if browser configured more strict revocation checks usual.

but in case shows certificate issued unknown ca. means either root ca certificate not known @ on system or server failed send intermediate certificates required build trust path root ca. in last case browsers able work around such broken configuration downloading missing intermediate certificates internet - of course requires internet access then. in first case (missing root ca) update of root ca store microsoft browsers might in background if have internet access.


Comments

Post a Comment

Popular posts from this blog

angular - Ionic slides - dynamically add slides before and after -

hi i'm using ngfor create set of 3 slides while starting in middle i'm guaranteed able slide left or right on start. when slide right can simple listen reachedend , push slide array i'm looping. but have problem adding slide beginning. if same above , use e.g. array.unshift() or spread add item beginning, view think it's on position 0 , snaps view new slide. the code below work animates slide change index 1. slide = [0,1,2] //example loop slidechanged(event) { if(this.slides.isbeginning()){ this.slide = [this.slide[0]-1, ...this.slide]; this.slides.update(); this.slides.slideto(1) } } <ion-slides [initialslide]="1" (ionslidedidchange)="slidechanged($event)"> <ion-slide *ngfor="let item of slide"> <h1>slide {{item}}</h1> </ion-slide> </ion-slides> any appreciated! you can using ionslidenextend , ionslideprevend events slides . please
Read more

minify - Minimizing css files -

i want know how css files can minimized. currently, using external sites css minifier compress css files. however, after removing whitespaces, comments, etc, file sizes reduced 10-15%. how frameworks bootstrap manage make minimized versions kilobytes. as example, css is: body { background-color: #ff0; } the reduction goes 28 bytes 22 bytes other css files have lot more characters still smaller this. actually minifying code means it's remove thing code white space characters new line characters comments block delimiters it reduces amount of code has transferred on web , speed site load fastly.but unreadable format.
Read more

Add a dynamic header in angular 2 http provider -

i have http interceptor built via tutorial https://scotch.io/@kashyapmukkamala/using-http-interceptor-with-angular2 the problem need have dynamic header changes automatically once changes 'mode' in app. service able tell interceptor change header, or have interceptor pull header (which string)from service each request. able throwing away patch method, call http.patch('new header string') set header string. call in service controls 'mode' setting. wondering if there way interceptor pull recent value service each request or if can add method http provider via interceptor? i've tried call service in interceptor each request returns undefined. because creating new instance of service or copying value before service fired , loaded/changed data. i don't want pass header string every http provider call because defeats purpose of having interceptor, id able set once changes or have provider fetch service before makes request. tl;dr : need add autom
Read more