Results 1 to 7 of 7
  1. #1
    Untangler
    Join Date
    Dec 2018
    Posts
    79

    Default What am I doing wrong with Google and SSL Inspector?

    I created a new Server Certificate that includes all of my internal networks and it all seems to work as intended (ie Bing is fine), however, Google always gives me a HSTS error and won't let me go to Google.

    I've tried to follow all of the tutorials but I must be missing something.

    I'm using the base install of SSL Inspector and merely turned it on.

    I did install the script on my phone for testing by going to http://192.168.1.1/cert

    Any thoughts?

  2. #2
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,713

    Default

    "a HSTS error"

    what does the error say?
    If in doubt, take a uncropped screenshot
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3

  4. #4
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,713

    Default

    That means its not trusting the CA. Either its not installed correctly, or the cert is pinned.
    Probably depends on your version of android and what app/browser you are using.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  5. #5
    Untangler
    Join Date
    Dec 2018
    Posts
    79

    Default

    So it appears to work in IE11 on my Win7 machine if I ignore the certificate error but in Chrome I can't go to anything Google related.

    Both IE11 and Chrome are fine with the certificate for Bing though.

    The phones were using Chrome and Android 7.1.2 just for reference.

    ETA: Chrome on the PC gives the same error as the phones do.

  6. #6
    Untanglit
    Join Date
    Jun 2018
    Posts
    19

    Default

    On Windows:

    1. Open Chrome, enter 'chrome://settings' in the address bar.
    2. Scroll down to 'Advanced'
    3. Under 'Privacy & Security,' click on 'Manage Certificates'
    4. Select 'Trusted Root Certification Authorities,' and click 'Import' - select the certificate you generated.
    5. Verify the certificate appears in the "Trusted Root Certification Authorities" tab.

    No clue how to do it on Android - I'm not a Chrome user. Instructions adapted from Securly Support Article.

    Hope that helps - I had to do something similar (manually import my certificate into FireFox, and trust it to authenticate websites).

  7. #7
    Master Untangler
    Join Date
    Aug 2016
    Posts
    180

    Default

    It does work ... my son at his school won an LG android based tablet. He has since moved out; however, I was able to import the certificate for his tablet. I had to import the cert into like a file or download area and then at the cert section import it from the download area. This was about a year ago so unfortunately this is the best that I can do
    Untangle14.1.2 (Build: 14.1.2.20190401) (Kernel: 4.9.0-7-untangle-amd64)
    QOTOM-Q355G4
    1.6-2.7 GHz Intel I5 5250U, 128GB SSD mSATA, 8GB RAM DDR3L, 4xRJ-45 Intel I211AT 10/100/1000 Controller

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2