We have users who need to access a secure site using the Safenet software for their USB "smart card reader with embedded certificate" tokens. After signing in to the site, any attempt to print via browser functionality (IE 11 is the only supported browser for this site) results in their session apparently being terminated and the Safenet software asking for the certificate password again. Providing the password does not re-establish the connection. The requested print operation does proceed though.
We have tried several combinations of client systems, browser security settings, and XG firewall rules. The browser security settings didn't seem to make a difference, but client OS and firewall rules seemed to have an effect:
If the client PC is running Windows 7 and behind the XG, it appears that with an access rule in the XG where the Web policy is set to none, this issue does not occur. We had tried various combination of settings and Web policy seemed to be the only one that made a difference.
If the client PC is running Windows 10 and behind the XG, the issue will always occur, no matter what rule options we tested: no AV scanning, no IPS, no Web policy, no App control, no Traffic shaping, and we still get disconnected.
A client PC running Windows 10 not accessing the internet through the XG has no problems. Same client was connected to network behind XG and the issue was present.
We have not been able to find any entries in the log viewer other than "Allowed" for those client PCs at the time the issue occurs. That said, I'm not sure the web content policy logging is working correctly since that log is completely blank.
Current firewall firmware: 17.5.0 GA, but issue was first mentioned by users before our upgrade to 17.5
This thread was automatically locked due to age.