Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 0 replies
  • Subscribers 27 subscribers
  • Views 190 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

"Block invalid certificates" option blocks valid wildcard certificates without a subdomain

Paul Turpie

Our Sophos XG (XGS4500 (SFOS 18.5.2 MR-2-Build380)) is blocking a website that has uses a wildcard certificate, but doesn't actually use a subdomain.

The site is https://nma.gov.au/av/endeavour/guugu-yimidhirr/ which has a wildcard certificate for *.nma.gov.au

Our Sophos firewall allows www.nma.gov.au but not nma.gov.au,

Chrome accepts that cert for both addresses when we are outside the firewall.

Can the firewall be configured to check certificates the same way browsers like Chrome do? Sophos also has trouble with some Intermediate certificates that browsers accept fine.



This thread was automatically locked due to age.
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?