Security Information alert from browser

Security Information alert from browser

Issue:

When connecting to a site through a webApp, like Microsoft SharePoint server,  through stoneware, ie shows the message "Security Information alert : The page contains both secure and nonsecure items"

How can we fix it?


Solution:

This comes from IE seeing requests for HTTP and HTTPS connections in the same page.  This is to alert you that not all of the data will be secure.

To fix it, use a program like IEWatch ( www.iewatch.com ) for IE or the Tamper Data plugin for Firefox to view the data stream and determine what page or graphic is being loaded with HTTP:// instead of HTTPS:// Then fix the actual page if you have access to the server, typically the publisher of that page has used an absolute URL instead of a relative one and it does not handle being SSL'd.

The second option is to use a stoneware rule and assign that to the webApp.  The rule can search for a HTML tag and attribute, and replace the HTTP with HTTPS.  If you have many of them, you can use * for tag and * for attribute to catch all cases.

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        Will the shutdown of LUW servers and access to downloads affect my server licensing? No, the shutdown of the customer servers and access to the product and licensing downloads will not affect your server licensing. This license is downloaded and ...
      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...
      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...
      • LanSchool Documentation Guides

        LanSchool Classic Teacher Console The LanSchool Teacher Console is the interface teachers will use to manage their classroom and students. It contains all the tools necessary for a teacher to effectively interact with students and create a ...
      • Lenovo Unified Workspace 7.0.1.41 Released

        Highlights of Unified Workspace 7.0.1.41 Before you install: Please view the installation notes here. 7.0.1.41 requires a 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.1.41 Updated Log4j Updated Java Updated ...
      • Related Articles

      • webApp causes a Security Information alert

        Issue: We have a web app that works fine except we get the Security Information alert : The page contains both secure and nonsecure items.  If you click on No, a couple of graphics don’t show up but the rest of the page is fine.  What can we do ...
      • Send an alert message to users

        Question Is it possible to send a pop-up alert message to users that are authenticated to Unified Workspace? Solution Unified Workspace does not allow for the admin to send pop-up alerts and messages to users in real time.  It does, however, have the ...
      • Enable - Disable httpOnly security flag

        By default in 6.4 Java Applets are now disabled due to best practices of secure cookie handling. After upgrading to 6.4 and running the system check you may see an alert such as  :  "Due to a security configuration, Java Applets are not supported." ...
      • Terminal Server 2000 information

        Windows 2000 terminal server settings From Microsoft site : http://72.14.203.104/search?q=cache:OPeT_a8tzEEJ:www.microsoft.com/technet/prodtechnol/win2kts/maintain/optimize/secw2kts.mspx+terminal+server+active+session+limit&hl=en&gl=us&ct=clnk&cd=1 ...
      • Security Headers

        As of Unified Workspace 7.0 HTTP Headers can be added to UW responses. We suggest adding the following Security Headers. Header Value Content-Security-Policy default-src https: 'unsafe-eval' 'unsafe-inline'; object-src 'none'; img-src 'self' data: ...