HTTX-540
Prev Kernun UTM Reference (6) Next

Name

HTTX-540 — Incomplete FAKE-CERT configuration

Severity

E (error)

Message text

FAIL-CA must be defined if FAKE-CERT with PASS is used (in SSL-PARAMS %s section)

Description

In the case of HTTPS inspection, the admin can choose the reaction to unsuccessful server certificate verification. If the PASS possibility is used, the proxy is ordered to sign the new certificate by "untrusted" certificate. However, such a certificate definition is missing in the respective FAKE-CERT section.

The application configuration fails.

Add the FAIL-CA item to the FAKE-CERT section.

See also

logging(7)

Authors

This man page is a part of Kernun Firewall.
Copyright © 2000–2023 Trusted Network Solutions, a. s.
All rights reserved.

Prev Up Next
HTTP-888 Home HTTX-810