Kentico 9 and Web Application Firewall (WAF)

mohamed kaied asked on July 18, 2017 09:49

Dear I use Web Application Firewall (WAF) with kentico 9 but I can't upload file through media library or attachment in page and I have error this error is: GetResource.ashx?scriptmodule=/AdminControls/MultiFileUploader.js:1 Mixed Content: The page at 'https://www.sdb.gov.sa/Admin/CMSAdministration.aspx#436564ee-89e9-4719-939a-0d7b57ece744' was loaded over HTTPS, but requested an insecure XMLHttpRequest endpoint 'http://www.sdb.gov.sa/CMSModules/MediaLibrary/CMSPages/MultiFileUploader.as…;oga|Hash|7319e2889f988a9a179c5ba154e7adcd8b1c42ab27985bb9bd17504d6e7288b2'. This request has been blocked; the content must be served over HTTPS.

Recent Answers

Brenden Kehren answered on July 18, 2017 12:53

Your WAF is configured for HTTPS but Kentico is not. You need to force Kentico to use HTTPS by making a change at the master page level in your content tree. Go to Properties>Security and choose HTTPS.

This will force your site to always choose the HTTPS protocol when it is requested by your WAF.

0 votesVote for this answer Mark as a Correct answer

mohamed kaied answered on July 18, 2017 14:01

Thxs, Brenden Kehren I already try this solution but website is stop working by this redirecting traffic from WAF

Do you Have any idea about this issue?

0 votesVote for this answer Mark as a Correct answer

Brenden Kehren answered on July 18, 2017 14:29

Have you set up the port 443 binding to a valid certificate in IIS as well on each server?

0 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.