Our SSL cert expired on the weekend and I was locked out of our Passbolt server. I normally use Passbolt on Edge so when I try to open the link on Edge it says “sv-passbolt01.ourdomain.com uses encryption to protect your information. When Microsoft Edge tried to connect to sv-passbolt01.ourdomain.com this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be sv-passbolt01.ourdomain.com, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Microsoft Edge stopped the connection before any data was exchanged.”
So, I re-ran the setup again and configured the SSL cert for none, but Edge continunes to fail and lock me out. The only way I was able to get into pssbolt was to install the extension on Chrome and go through recovery.
So, my question is how to I reset the connection on Edge? And why can’t Passbolt allow the connection if the SSL cert has failed?
Thanks,
Hi Andrew,
If I’m reading this correctly “So, I re-ran the setup again and configured the SSL cert for none” then your new URL is no longer https but instead http. Is that correct?
Did you change the fullBase URL in Passbolt as well?
The browser extension does checking for an exact URL match so my guess is that it’s not the TLS stopping the connection but a slightly different URL (non-https).
Let me know if any of that is useful.
Also it would be good to know which OS and web server you’re using.
https://www.passbolt.com/docs/hosting/configure/https/pro/debian-auto/
cheers
gareth
I figured out why I am getting that message on Edge. It some security setting that is blocking the old SSL cert. It’s just a pain that it does that and doesn’t allow me to access the site as all our systems passwords are on passbolt.
It’s good that Chrome doesn’t have the same security setting or I would be toast until I found and disabled the setting.
We use Windows 10.
1 Like
Glad to hear you figured it out!
If it’s something you think others might encounter then it would be great to know which setting was the cause.
Nice work!
Why would you not simply renew or replace the web platform certificate, restart the web daemon and gain access again?
Our wildcard SSL cert is used in Windows servers, so renewing it from Ubuntu is not an option.
Assuming you must be renewing your wildcard cert used in Windows… then copy this same, renewed cert and private key to Ubuntu and done.
And how do you expect I do that when our passwords to the SSL cert site live in Passbolt?
1 Like