Secure Site not working correctly

Question

Hi &nbsp;
I have a secure site that has the following at the bottom of the page..&nbsp;
"Only secure content is displayed"&nbsp;
is there a way on the F5 that i can remove this...&nbsp;

hooleylist · Answer

Hi Angelo, 
&nbsp;  
&nbsp; It sounds like the application is referencing itself over HTTP when being SSL proxied by LTM. If you want to avoid the client getting an insecure content warning, you'd want to rewrite the response headers and/or payload from http:// to https://. It would help to determine where the http:// reference is (in response headers and/or content). You can use a browser plugin like HttpFox for Firefox or Fiddler.  
&nbsp;  
&nbsp; Depending on the application, you might be able to configure it to reference itself using https://. If not, you should be able to use an iRule to rewrite the http:// references to https://.  
&nbsp;  
&nbsp; Aaron

Forum Discussion

Secure Site not working correctly

1 Reply

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

Using ChatGPT for security and introduction of AI security

Making Android SSL Work Correctly.

Auditing Security Policy Updates

HTTP Multipart and Security Implications

Minimizing Security Complexity: Managing Distributed WAF Policies