Scott PR 0 Posted February 5, 2020 Posted February 5, 2020 Having an odd issue: certain websites (facebook & microsoft in particular) are inaccessable from machines on our LAN. They are, however, accessable from our wifi, which is just ap's that feed the lan. I noticed the ssl on one site was listed as "ESET Filter SSL CA" and was wondering, could there be an issue with our LAN accessing your root CA? Is that used as a proxy for other root CA's? Thanks
itman 1,805 Posted February 5, 2020 Posted February 5, 2020 (edited) Chrome and FireFox use their own root CA stores to validate SSL/TLS communication. Eset copies its root CA certificate into those stores when it is installed. Edge and IE11 use the Win root CA store to validate SSL/TLS communication. 1 hour ago, Scott PR said: Having an odd issue: certain websites (facebook & microsoft in particular) are inaccessable from machines on our LAN. If there was an issue in regards to Eset root CA certificate use, all HTTPS sites would have issues. Additionally when an Eset root CA certificate use issue manifest, the browser usually gives a notification in regards to a certificate issue. Are you receiving such browser alerts on these websites? If so, please post a screen shot of the alert being displayed. Edited February 5, 2020 by itman
Scott PR 0 Posted February 6, 2020 Author Posted February 6, 2020 16 hours ago, itman said: Chrome and FireFox use their own root CA stores to validate SSL/TLS communication. Eset copies its root CA certificate into those stores when it is installed. Edge and IE11 use the Win root CA store to validate SSL/TLS communication. If there was an issue in regards to Eset root CA certificate use, all HTTPS sites would have issues. Additionally when an Eset root CA certificate use issue manifest, the browser usually gives a notification in regards to a certificate issue. Are you receiving such browser alerts on these websites? If so, please post a screen shot of the alert being displayed. So...no, then?
itman 1,805 Posted February 6, 2020 Posted February 6, 2020 22 minutes ago, Scott PR said: So...no, then? You didn't answer my question if you are receiving browser based certificate alerts on the web sites you are having difficulty accessing.
Recommended Posts