We had 2 applications blow up last night at 6PM when the certificate expired and we had 7 more that were down this morning when users tried logging in. The funny thing was that my group manages our reverse proxy environment and all but one of our production certificates had been updated with the proper certificate chain. Once we had determined the problem we were able to resolve it quickly on our end. But, many of the applications that appeared to be accessible from the login page would not function once a valid user logged in.
99% of our problems have been related to backend webservers with out of date certificates or applications that used SSL between components that were still using the old certificate.
Slashdot Mirror
We had 2 applications blow up last night at 6PM when the certificate expired and we had 7 more that were down this morning when users tried logging in. The funny thing was that my group manages our reverse proxy environment and all but one of our production certificates had been updated with the proper certificate chain. Once we had determined the problem we were able to resolve it quickly on our end. But, many of the applications that appeared to be accessible from the login page would not function once a valid user logged in.
99% of our problems have been related to backend webservers with out of date certificates or applications that used SSL between components that were still using the old certificate.