Task #10816
closed
TLS Error on services.d4science.org when accessed by Firefox
100%
Description
Portals hosted in services.d4science.org cannot be accessed with Firefox Browser. Reported error message is :
"An error occurred during a connection to services.d4science.org. A required TLS feature is missing. Error code: MOZILLA_PKIX_ERROR_REQUIRED_TLS_FEATURE_MISSING"
Related issues
Updated by Andrea Dell'Amico over 7 years ago
- Status changed from New to In Progress
- % Done changed from 0 to 20
I'm investigating the issue. I do not have a clue yet, the same exact configuration is working on the dev and preproduction instances.
As a temporary workaround, the 'ocsp must staple' check can be disabled on Firefox:
Write
about:configin the URL barsearch for
security.ssl.enable_ocsp_must_stapleand set its value tofalse
Updated by Luca Frosini over 7 years ago
- Is duplicate of Support #10817: Infrastructure gateways TLS error with Firefox added
Updated by Andrea Dell'Amico over 7 years ago
- Is duplicate of deleted (Support #10817: Infrastructure gateways TLS error with Firefox)
Updated by Luca Frosini over 7 years ago
- Status changed from In Progress to Closed
Updated by Andrea Dell'Amico over 7 years ago
- Has duplicate Support #10817: Infrastructure gateways TLS error with Firefox added
Updated by Luca Frosini over 7 years ago
- Status changed from Closed to In Progress
Updated by Andrea Dell'Amico over 7 years ago
- Status changed from In Progress to Feedback
- % Done changed from 20 to 100
It seems a openssl bug. Why it started showing now I've yet to understand. I worked around it for the time being and at the next renewal the certificates on the haproxy nodes will have the must staple flag disabled.
Updated by Andrea Dell'Amico over 7 years ago
- Related to Incident #10823: social.isti.cnr.it TLS error with latest Firefox version added
Updated by Andrea Dell'Amico over 7 years ago
- Status changed from Feedback to Closed
