LevelBlue Named Official Cybersecurity Advisor of the PGA of America. Learn more

LevelBlue Named Official Cybersecurity Advisor of the PGA of America. Learn more

Services
Cyber Advisory
Managed Cloud Security
Data Security
Managed Detection & Response
Email Security
Managed Network Infrastructure Security
Exposure Management
Security Operations Platforms
Incident Readiness & Response
SpiderLabs Threat Intelligence
View All Services
Solutions
BY INDUSTRY
BY REGULATION
BY TOPIC
Offensive Security
Solutions to maximize your security ROI
Operational Technology
End-to-end OT security
Microsoft
Unlock the full power of Microsoft Security
Securing the IoT Landscape
Test, monitor and secure network objects
Why LevelBlue
About Us
We reduce cyber risk and build resilience
Awards and Accolades
The most recognized cybersecurity leader
LevelBlue SpiderLabs
Elite global threat experts and intelligence
PGA of America Partnership
Cybersecurity at the championship level
Secure What's Next
Future-proof your organization
LevelBlue Security Operations Platforms
Unprecedented security visibility and control
Security Colony
Cybersecurity threat protection resources
Partners
Microsoft
Unlock the full power of Microsoft Security
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Register
Login
Resources
BLOGS
UPCOMING
MEDIA & ASSETS
NOTICES
HELP
Loading...
Loading...

LevelBlue Knowledge Base

Home » Knowledgebase » Legacy Products » Web Filter (R3000) » HOWTO: Correcting a Certificate Revoked issue for the web...

HOWTO: Correcting a Certificate Revoked issue for the web interface

Expand / Collapse
Show/Hide Article Tools


This article applies to:

  • Web Filter - All Versions
  • WFR - All Versions

Question:

  • How can I access the web interface if the TLS/SSL Certificate for the site is revoked?

Procedure:

Part 1:

  1. Open the Java Control Panel and select the Advanced tab.
  2. Locate the options for Certificate Revocation checks. Temporarily change the settings. Note that different versions of Java have different wording. The wording below is correct at version 8, update 66.
    • Set Perform signed code certificate revocation checks on to "Do not check (not recommended)"
    • Set Perform TLS certificate revocation checks on to "Do not check (not recommended)"

Remember to go back to the recommended setting "All certificates in the chain of trust" after you have generated your new certificate.

At this stage, you should have access to the product web interface.

Part 2:

From the User Interface:

  1. Navigate to System > Authentication > Enable/Disable. Make sure this option is enabled.
    • If the option was not enabled, enabling it will take 2-3 minutes as some of the Tomcat services will be restarted.
  2. Once the setting is enabled, select Authentication > Authentication SSL certificate > Download/View Certificate
    • Confirm that the certificate is invalid. Invalidity is most often caused by hostname mismatches, or an expired SSL certificate. If either applies to you, then you will want to delete the certificate via this tab.
  3. Create a new self-signed certificate: Authentication > Authentication SSL certificate > Self Signed Certificate > Create Self Signed Certificate.

 

During the above changes, services are being restarted to load the configuration. If you see an error message,  a service may still be in the process of being restarted. Wait a short time and try again.

Part 3:

After the certificate has been created:

  1. Test by setting authentication back to disable ( Authentication > Authentication Enable/Disable > Set to disable (only applies if system is used for authentication).
  2. Remember to change the two Java certificate revocation check settings to the recommended setting "All certificates in the chain of trust"

Notes:

Additional information can be found in article Q12600.

To contact LevelBlue about this article or to request support:

Rate this Article:
     

Add Your Comments


Comment submission is disabled for anonymous users.
Please send feedback to Trustwave Technical Support or the Webmaster.


Execution: 0.031. 9 queries. Compression Disabled.
Powered by InstantKB.NET