Netscreen 5GT management HTTPS & IE7

[boekh331]

I can't access my netscreen with IE7 on HTTPS. On HTTP it works fine
With IE6 and FireFox it is no problem to access the management over HTTPS.

I have this problem on different NetScreen's with different screeen OS'es.

Has some resolved this problem yet?

 

[Packet7]

Hello,

I don't think Juniper has certified IE 7 yet. This goes for all their Firewall and SSL series. Are you using a self signed certificate? If so, trying adding the Management URL to the trusted sites in the browser settings. I have yet to explore IE 7, but I'm guessing it locks down SSL access to trusted sights only (no more prompting if it's OK). Let me know if this helps.

Rgds,

John

 

[boekh331]

Hi John,

Tnxs for the response,

I already added the management url to my trusted sites and it didn't work.
I've also got some other products with a self signed certificate and they work fine.

It looks like a netscreen problem..

 

[Packet7]

OK, thanks for the response. Have you tried FireFox? That might allow you to keep IE 7 and still manage your Firewall.

Rgds,

John

 

[boekh331]

I already used FireFox for management, but my coworker has IE7.. He no also has to use FireFox.

Tanks fot the suggestion.

Rgrds,
Eduard

 

[indyvql]

I found the same problem on my NS5GT (ScreenOS 5.2.0r2.0) and my NS5XP (ScreenOS 5.0.0r10.0). MS talks about making sure SSL 2.0 is enabled if you have problems, but that didn't seem to make a difference.

I finally found the following KB article on the Netscreen web site.

http://kb.juniper.net/KB9181

It said to disable TLS 1.0 in the Advanced tab of IE 7 Options (leaving only SSL 3.0 selected in this group). After doing so, the HTTPS access worked without problems.

Hope this helps,
Indyvql

 

[boekh331]

Hi indyvql,

This solution works.

Now we can use 1 browser for our management.

Tanks for your reaction.

Rgrds,
Eduard