adrockk Trusted Contributor.
Trusted Contributor.
928 views

CLE: You must use the HTTPS protocol


Hi All,

I'm just setting up SSPR, and installed Client login extensions on an
Windows 7 vm. When I click on the Forgotten Password link on the login
page, I get the error:* You must use the HTTPS protocol*
The url I'm using for the link is
-https://servername.fqdn/sspr/public/ForgottenPassword -

This is on CLE 3.8.1_17 on Win7. SSPR is v3.2 b62 r38408.
SSPR is running on tomcat 6 with SSL on port 8443, with a proxy
connector to apache on port 443, both with the same wildcard ssl cert.
Everything works fine from a normal browser on the same, and I don't see
any non-ssl requests, or any requests to any other site, from the
browser debugger (F12) or from watching my proxy logs. I've tried it
with the proxy on and off as well.

Any ideas why the restricted browser would be yelling at me to use HTTPS
even though I already am?

TIA,

Adam


--
adrockk
------------------------------------------------------------------------
adrockk's Profile: https://forums.netiq.com/member.php?userid=1651
View this thread: https://forums.netiq.com/showthread.php?t=53347


0 Likes
5 Replies
Knowledge Partner
Knowledge Partner

Re: CLE: You must use the HTTPS protocol

Do you have ZCM (ZenWorks) stuff on the windows system?

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
0 Likes
adrockk Trusted Contributor.
Trusted Contributor.

Re: CLE: You must use the HTTPS protocol


ab;256533 Wrote:
> Do you have ZCM (ZenWorks) stuff on the windows system?
> ...


I do. Zcm 11.3. No Novell client, though.


--
adrockk
------------------------------------------------------------------------
adrockk's Profile: https://forums.netiq.com/member.php?userid=1651
View this thread: https://forums.netiq.com/showthread.php?t=53347


0 Likes
Knowledge Partner
Knowledge Partner

Re: CLE: You must use the HTTPS protocol

That is likely it, then:

https://www.netiq.com/documentation/client-login-extension/idm_cle/data/bs5wb6l.html

The ZCM client, I believe, modifies the login process, and as a result
cannot be used with the CLE. Bug# 893444 exists to try to help with this
in the future, and there are some test builds that you can probably get by
opening an SR and referring to this, which may help. At the end of the
day, though, the docs are there telling you to not use these together.
Seems like a worthwhile enhancement, or even a bug, so give that a try if
you can open the SR.

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
0 Likes
adrockk Trusted Contributor.
Trusted Contributor.

Re: CLE: You must use the HTTPS protocol


ab;256537 Wrote:
> That is likely it, then:
>
> http://tinyurl.com/mqq5k65
>
>


Thanks AB,

Seems that is the trouble. What quirkly thing. One would think if it was
a GINA/Credential Provider problem, you wouldn't even see the extension,
or the restricted browser.

I poked around with it over the past few days, and if I remove ZCM and
install it again after CLE is installed, it seems to behave just fine.
Unfortunately, that's a lot of work to implement the CLE on existing
machines. 😞


--
adrockk
------------------------------------------------------------------------
adrockk's Profile: https://forums.netiq.com/member.php?userid=1651
View this thread: https://forums.netiq.com/showthread.php?t=53347


0 Likes
Knowledge Partner
Knowledge Partner

Re: CLE: You must use the HTTPS protocol

This thread is not the end of the line. Open an SR, mention the bug
number, and let them know the need for a change. You're not the first
customer to want the providers to work together, but for some reason
that's well beyond my technical understanding, it has not been possible
yet. SRs and bugs are used to track customer needs, complaints,
enhancements, etc. Also you can enter an enhancement request on
https://www.novell.cmo/rms/

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.