04-25-2013 12:49 PM
I am configuring the Legal Hold confirmation server on a new Clearwell v7.1.2 install. By default, links to the confirmation webpage are configured as HTTPS, so when a custodian clicks on a Legal Hold confirmation link, they get this message:
There is a problem with this website's security certificate.
The security certificate presented by this website was issued for a different website's address.
Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
We recommend that you close this webpage and do not continue to this website.
Click here to close this webpage.
Continue to this website (not recommended).
More information
We will not be deploying a certificate since all access is internal. The Legal Hold guide suggests two methods to create a certificate but there is a property that will direct the user to a non-secure version of the Confirmation Server, an HTTP address instead of an HTTPS, that will eliminate this error.
Property to change: esa.icp.holds.link.useHttps
Value to set: false
Confirm Change.
No need to restart services, the new link will go to HTTP and all of the previous hold notices are accessible there.
04-26-2013 06:12 AM
Is there a question here or are you just making a statement of something you did?
04-26-2013 01:33 PM
It was put in as a Tip/How To
I searched for this solution earlier in the day and found no articles. Once I found the answer I wanted to share for the next poor soul who came along looking for the same thing.
04-26-2013 03:53 PM
Thanks for sharing the info Joe!
Cheers,
04-26-2013 03:56 PM
Good Idea.
My question is seeing as it is internal only and you are being redirected to HTTP anyway why have it use HTTPS at all?
The redirect removes any security that you were hoping to get through HTTPS
I think if HTTPS is needed then installing a full certificate not a self-signed one will not only remove the certificate warning message in IE but it will also ensure that the users are reaching a secure site and any communication is secure.
Just my thoughts :)
04-28-2013 05:43 PM
Could you help me find the Legal Hold Set up guide? I can't find it anywhere.
04-28-2013 06:57 PM
Hi Ksully,
you can log into the application and click on the Documentatation link at the bottom of the window to display a link to all guides
04-28-2013 07:01 PM
In my situation, all traffic is inside our network so HTTPS and a Cert was redundant.
The default installation of the confirmation server directs it to HTTPS. This solution is really only viable in a situation similar to mine.
If someone is inside our network who shouldn't be, the security of our Legal Hold confirmation page are the least of our problems!
04-28-2013 08:01 PM
Agreed, It should also be in the appliance and the local person responsible for managing the appliance should also have a copy.
If you have specific questions please open a new thread and we will address any questions you have
04-30-2013 09:17 AM
Hey Joe,
Thank you for passing on the info. And yes I've arrived to the party a bit late. However, I did create a Tech Note TECH205743 for how to do this and it should be Public soon as I just published it.