Intermittent blank page when accessing protected site via NAM, using IE
This document (7012785) is provided subject to the disclaimer at the end of this document.
A combined Admin Console and IDP behind a SLES 11 server running the Access Gateway Service
The F5 BigIP was mis-configured. As the following options were selected in error, the correct configuration of these items (that is, unchecking them) resolved the issue:
When the BIG-IP system performs renegotiation as an SSL server, this option always starts a new session (that is, session resumption requests are only accepted in the initial handshake). The system ignores this option for server-side SSL processing.
This option disables a countermeasure against a SSL 3.0/TLS 1.0 protocol vulnerability affecting CBC ciphers. These ciphers cannot be handled by certain broken SSL implementations. This option has no effect for connections using other ciphers. This is the default value for the Enabled Options list.
This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.
- Document ID:7012785
- Creation Date:03-JUL-13
- Modified Date:04-JUL-13
- NetIQAccess Manager (NAM)
Did this document solve your problem? Provide Feedback