locked
NLS Network Location Server - The network location certificate could not be authenticated RRS feed

  • Question

  •  We have created and IIS NLS Server with a certificate from our CA. For this sake of this we have an inside.com domain and and outside.com domain.  The UAG is configured so that inside.com domain is registered on the inside interface. We have tested connecting to the web page using the brower on the UAG to connect to the NLS. If we configure the browswer to use proxy settings and to bypass proxy for *.inside.com domain the browswer will not validate teh certificate.  If we remove the proxy settings so it resovles www.inside.com to the externally registered site by another company and then try connecting to NLS.inside.com doamin we are able to connect with no certificate errors - go figure.  Irregardless when we try to validate the nls.inside.com site within UAG we receive teh error, "The network location certificate could not be authenticated".  Any help woudl be appreciated.
    Tuesday, June 28, 2011 1:29 PM

Answers

  • Hello,

    It sounds like the UAG server doesnt fully trust your SSL certificate based on your currently environment.

    Open a browser on your UAG server,  goto HTTPS://nls.inside.com  and see which specific error your getting.  Judging by your test with the proxy settings, it sounds like the issue is related to UAG being able to check the certificates revocation information.

    Thanks
    Dennis Lee
    Celestix Networks

    • Marked as answer by Erez Benari Friday, August 26, 2011 11:37 PM
    Wednesday, July 6, 2011 8:38 PM