Explanation of the SSL messages in the ProxySG's Event Log
search cancel

Explanation of the SSL messages in the ProxySG's Event Log

book

Article ID: 165735

calendar_today

Updated On:

Products

ProxySG Software - SGOS

Issue/Introduction

Missing SSL server certificate
The server did not send an SSL server certificate during the SSL handshake.

Failed to get the peer certificate
The SSL server did not send a server certificate during the SSL handshake, and terminated the connection instead. (Src: https://cachezilla.bluecoat.com/show_bug.cgi?id=159481)

SSL server handshake failure
The SSL server handshake failed, possibly caused by non SSL-compliant sites, or sites using TCP 443 for non-HTTPS services.

alert unknown ca
The ProxySG does not trust the Certificate Authority that issued the SSL certificate for the SSL host being contacted. If it's trusted by the browser, we can manually import that certificate into the proxy.

CERT_UNTRUSTED_ISSUER
The ProxySG appliance does not trust the CA that issued the certificate. If it's trusted by the browser, we can manually import it into the proxy.

Server certificate validation failed: CERT_UNTRUSTED_ISSUER, Name in certificate: XXXXXXXXXXX
The ProxySG appliance does not trust the Certificate Authority that issued the certificate. In real errors of this nature, the "XXXXXXXXXXX" will be the Common Name of the offending certificate.

Server certificate validation failed:CERT_EXPIRED
The SSL Certificate presented by the server has expired.

SSL3_GET_RECORD :wrong version number
SSL records a major version larger than 3 or SSL Client Hello version differs to that from the SSL-record version.

RW: SSL connection to server failed
Failed to connect to the HTTPS server. RW indicates Retrieval Worker, i.e. the ProxySG appliance tried to prefetch some HTTPS URLs accessed by the user but failed to connect to the server

SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate
The ProxySG appliance requires a client certificate, but the client did not send one.