Thanks a lot it's working fine we getting the expected page. But we are facing some issues on it.
In chrome & IE after passing the login credentials page we are getting attached error.
Chrome : If we click back then the page is working fine.
IE : If we refresh the page then it's working fine.
Firefox : Working fine without any issues.
Could you please help us how to fix this issue.
How to encrypt just the login portion in Nagios XI
-
ganeshanrs1983
- Posts: 55
- Joined: Wed Jun 18, 2014 10:16 am
Re: How to encrypt just the login portion in Nagios XI
You do not have the required permissions to view the files attached to this post.
-
jdalrymple
- Skynet Drone
- Posts: 2620
- Joined: Wed Feb 11, 2015 1:56 pm
Re: How to encrypt just the login portion in Nagios XI
We would need to see the relevant portion of your httpd error_log and access_log. It's not clear at all from those screenshots what reference is getting 404'd.
-
ganeshanrs1983
- Posts: 55
- Joined: Wed Jun 18, 2014 10:16 am
Re: How to encrypt just the login portion in Nagios XI
Please find the attached log files.
You do not have the required permissions to view the files attached to this post.
-
jdalrymple
- Skynet Drone
- Posts: 2620
- Joined: Wed Feb 11, 2015 1:56 pm
Re: How to encrypt just the login portion in Nagios XI
That's bizarre
I couldn't recreate your problem using the same hacked up config I shared earlier
I also couldn't see any relevant 404 errors in your logs. I wonder if the problem isn't that there is an issue with mixed content...
The deal is this is never going to work properly without actually modifying the XI login.php some. At this point you're delivering all of the stylesheets via https so that your login page looks good, and without modifying source all of the non-secure pages will have to have their css delivered securely just the same, which is probably something not making any of the browsers happy. The fix in IE is illustrated in the attachment - change the setting to enabled.
The more you customize your system the more likely it is to break when it's patched or upgraded. Additionally, I refer back to the link I shared earlier - you're negating the purpose of the SSL login by having your PHP sessions data transmitted unencrypted.
I couldn't recreate your problem using the same hacked up config I shared earlier
I also couldn't see any relevant 404 errors in your logs. I wonder if the problem isn't that there is an issue with mixed content...
The deal is this is never going to work properly without actually modifying the XI login.php some. At this point you're delivering all of the stylesheets via https so that your login page looks good, and without modifying source all of the non-secure pages will have to have their css delivered securely just the same, which is probably something not making any of the browsers happy. The fix in IE is illustrated in the attachment - change the setting to enabled.
The more you customize your system the more likely it is to break when it's patched or upgraded. Additionally, I refer back to the link I shared earlier - you're negating the purpose of the SSL login by having your PHP sessions data transmitted unencrypted.
You do not have the required permissions to view the files attached to this post.
-
ganeshanrs1983
- Posts: 55
- Joined: Wed Jun 18, 2014 10:16 am
Re: How to encrypt just the login portion in Nagios XI
Team,
We have followed the below link exactly to encrypt our entire nagios url but we are facing below problems please provide some solutions for this issue.
While doing
-> Disable notification : Getting timed error
-> Apply configuration : It's taking toooooooooo long time to do apply configuration donno it's doing the required changes or not.
http://assets.nagios.com/downloads/nagi ... s%20XI.pdf
We have followed the below link exactly to encrypt our entire nagios url but we are facing below problems please provide some solutions for this issue.
While doing
-> Disable notification : Getting timed error
-> Apply configuration : It's taking toooooooooo long time to do apply configuration donno it's doing the required changes or not.
http://assets.nagios.com/downloads/nagi ... s%20XI.pdf
Re: How to encrypt just the login portion in Nagios XI
This is a common problem if a step in the SSL doc was missed. Also, given how many changes you have made for the early attempts at partial encryption, there is a good chance that not all of the previous changes were commented out before you made the doc changes. Can you post your nagiosxi apache vhost config?
Former Nagios employee
"It is turtles. All. The. Way. Down. . . .and maybe an elephant or two."
VI VI VI - The editor of the Beast!
Come to the Dark Side.
"It is turtles. All. The. Way. Down. . . .and maybe an elephant or two."
VI VI VI - The editor of the Beast!
Come to the Dark Side.