cancel
Showing results for 
Search instead for 
Did you mean: 
jspanitz
Level 7

MWG7 Web Interface SSL Handling

Coming from MWG6 there was a decent set of tools built in to report on SSL issues (expired, self signed, etc certs) and to test the certs on a given URL.

It seems MWG7 lost all of that.

So the obvious question is when if MWG7 going to be feature parity to MWG6.  The not so obvious question is how does McAfee expect one to handle SSL problems in MWG7 until feature parity is achieved.  Is there an SSL troubleshooting doc or any type of help in dealing with the issues or are we on our own?

0 Kudos
3 Replies
McAfee Employee

Re: MWG7 Web Interface SSL Handling

Hi John!

Looks like you have brought this up previously:

https://community.mcafee.com/message/233560#233560

Were you able to create a log as Andre had suggested? If not, here is a logging ruleset I came up with (see screenshot and attachment).

2012-06-11_132951.png

At the moment though we dont have a troubleshooting guide for such incidents. But this log could point you in the right direction.

Personally, I just take a look at the site myself in question (in IE or Firefox), you can then export the certificates for importing into MWG 7 (see screenshot below). Once exported you can import the certificates into your trusted CAs (if needed). I too wish there was an option to "fetch" the certificate in the GUI, like you had with 6.

2012-06-11_133549.png

Did you have any specific examples you were looking for guidance on?

Let me know if the log helps!

~Jon

0 Kudos
jspanitz
Level 7

Re: MWG7 Web Interface SSL Handling

Yeah, I seem to post about the same things a lot

So I never did try the log because I was not sure where to begin as my experience with MWG7 is still not great.  I've gotten slightly better since my post in march.

I will try your ruleset.  Thanks for that.

Here's hoping that some of the old features will make it into MWG7 soon!

0 Kudos
asabban
Level 17

Re: MWG7 Web Interface SSL Handling

I added the rule set to the online rule set library:

https://contentsecurity.mcafee.com/ruleset_library?q=50035

Sorry Jon for stealing your work (again), but I liked it :-)

Best,

Andre

0 Kudos