Watchguard SSL Certificate problems

Posted by Bill Best on Server Fault See other posts from Server Fault or by Bill Best
Published on 2010-04-15T12:27:10Z Indexed on 2010/04/15 12:33 UTC
Read the original article Hit count: 2443

We recently purchased a Watchguard XTM 510. The hope is to replace our ISA 2006 proxy with this UTM product. We are having some issues with secured sites in our test setup. Currently We are still running traffic through the ISA server and I have the Watchguard also setup to be connected to the network. Where we run into problems is when I set in ISA the HTTPS site's location to be forwarded through the XTM, I get a certificate could not be validated error.

Therefore I think Ive narrowed it down to two possibilities. One, the certificate needs to be installed on the XTM. Im not 100% sure this is the case as I believe this should just be acting as strictly a proxy and forwarding all the traffic through no questions asked. Either way if I try to import a certificate to the XTM I always get a certificate validation failed error message. These are generally converted pfx to pem files.

Second, the XTM CA certificate needs to be installed on the ISA server so that they may communicate. I have done this but it didn't seem to do anything.

I believe this should be working and was hoping someone has struggled through this before.

© Server Fault or respective owner

Related posts about watchguard

Related posts about ssl-certificate