Menu

SSL Certificate - Could we use a wildcard certificate

0 votes

We are updating our public SSL certificate and would like to utilize a wildcard certificate instead. Does the application support that?
At the moment - we are getting a error, but we can see that it is using the new wildcard certificate.

in Security by (120 points)
Share on
share on gp share on fb share on tw share on li
dbFront should not care as long as the certificate allows the browser to complete a valid SSL connection to the web server.   dbFront only reports and warns about the lack of an SSL secured connection.   What error are you getting?
by (61.1k points)
The error we get with with our expired dbfront.domain.com certificate and new *.domain.com certificate is the same.

Error is "the connection is invalid. SSL certificate expired" however, the details below (on the same error page) shows certificate CN *.domain.com with certificate validity until July 19, 2023
by (120 points)
Is there a load balancer in the mix?  Internally dbFront uses the Request.IsSecureConnection() call in c#.    See: https://stackoverflow.com/questions/12725859
by (61.1k points)

1 Answer

0 votes

I am going to assume that the issue was the load balancer. Please indicate if there is something else going on.

The issue with using a LoadBalancer is that they are often the termination point for the SSL connection. The LoadBalancer forwards the conversation to the WebServer/dbFront as plain, unsecure HTTP. This means that the client sees that the connection is running over SSL but dbFront and the WebServer only see HTTP which is unsecure.

One solution would be to configure dbFront to look for custom HTTP headers added by the LoadBalancer. This would need to be site specific.

Let me know if that functionality is required.

by (61.1k points)
Welcome to the dbFront Q&A site, where you can ask questions and receive answers from other members of the community.

Categories

Most popular tags

table-view error security lookup-field action-button user-interface css form-fields advanced-search table-grid customizing tables installing reporting import stored-procedure url user-help authentication login single-sign-on sqlserver active-directory email performance export database-connection foreign-key license attachments field-preferences search custom-visibility mysql table-relationships cascading-lookup quick-search logo printing themes date-field primary-key iis azure backup database costed pdf-form sidebar-help user-profile multi-select main-menu iframe drop-down-list numeric-field table-preferences access-control timeout sorting excel multilingual header connector notifications audit support csv oracle display upgrading connection help html-fields whitelisting child-tables session-key-failure webrequest wildcard-search font-size save-button row-security default-value barcode network-file local-file integrations logout custom-sorting validation attachment-properties custom-caption debugging ldap xml checkbox record-locks user-alerts database-preferences date-format custom-list
 | Minimalist Answer Theme by Digitizor Media
 |
Powered by Question2Answer
...