[self-signed certificate] When I try to login to my firewall (Netgate SF 3100), I Cannot bypass "Connection not protected"

[monarchi]

When I try to login to my firewall (Netgate SF 3100), I cannot bypass the following page. There is no opportunity to "accept the risks". (Image attached.) I used to be able to do this, but now have a new computer. Is there a setting I need to make in Kaspersky Total Security? Thank you. David

[Flood and Flood's wife]

Hello David, Welcome! Please provide: Operating system, version, build, release? Kaspersky software, version, patch ? & the image please? Many thanks!

[monarchi]

Windows 10 Pro x64 Version 1803 Build 17134.885 Kaspersky Total Security 19.0.0.1088(f) Thank you, David

[Schulte]

Hi David, see if you can handle the problem with an exclusion. Go to 'Settings->Additional->Network->Manage Exclusions'. Set an exclusion there (as shown in the picture).

[monarchi]

I tried your suggestion with exactly the same result (i.e., the screen looks the same as it did in the image I sent). David

[Schulte]

As a workaround you can switch to 'Do not scan encrypted connections' in 'Network settings' for test purposes. Can you now access the firewall?

[monarchi]

That solved it. :-) What do you suggest I do to solve this problem for the long term? David

[Flood and Flood's wife]

Hello David, "Do not scan encrypted connections'' is a test, not the (desired) ultimate solution.

1. Is "Connection not protected" displaying on every browser used?
2. When you installed KTS on the new computer what process did you use?
3. Have you disconnected from the internet, (factory) reset the router, rebooted PC?
4. Please check Kaspersky REPORTS, find alerts for "Connection not protected", export just those alerts, upload the report using the upload icon below.
5. Can you please run GSI, with Windows logs, upload .zip to cloud storage of your choice and post back the link please?

GSI - doc ref: https://support.kaspersky.com/common/diagnostics/3632#block7 Please let us know? Thanks!

[Schulte]

Hi, David, I can only guess. But I still have an idea: add the URL in question to the exceptions. @FLOOD: I would like to postpone your suggestions. It looks like an error of the KL software, which appears from time to time. But thank you very much for your help, maybe it is still necessary.

[Flood and Flood's wife]

Hello Schulte, Absolutely, I totally agree?. David, please follow Schulte's instructions. Please do let us know the outcome, bc, having feedback such as yours helps everyone, now & in the future! Thanks!

[monarchi]

Hello Flood and Schulte - I have tried two things per your suggestions: 1) Using a different browser. Neither Firefox nor Opera behaved any differently. 2) Adding pfsense-..... to the list of exclusions. Again there was no change. I am in a bit of a bind because I need to be able to get to my firewall. Any suggestions would be greatly appreciated. :-) TYIA, David

[Flood and Flood's wife]

Hello David,

1. Please select View Certificate, capture images of each page from the "extended" certificate detail & post back please?
2. Browser version?
3. Please replicate the issue so KTS captures and logs fresh events, go to KTS REPORTS, export a 24 hrs (all events) report, save (as a .txt file) upload the report using the upload icon below (in your post)?
4. & please create & upload GSI & Windows logs, upload .zip to cloud storage of your choice and post back the link please?

GSI & Windows logs - doc ref: https://support.kaspersky.com/common/diagnostics/3632#block7 Please let us know? Thanks!

[bill209]

i am curious as to whether or not this was solved?
i am having the same issue when trying to access my local pfsense web GUI.

i can open another ticket if that is preferable to adding information to this one.

thanks!

bill

[richbuff]

Welcome. If the issue remains unresolved after review of this topic thread, 

please contact Tech Support: https://my.kaspersky.com/support/

Please attach the following items to your Tech Support request: 

a. Description of the issue.
b. Screenshot, as needed.
c. GSI

[mouselette]

exactly the same problem here with pfsense. no solution other than disable mozilla web scanning. v20.0.14.1085 then clear the cert9.db as kaspersky corrupts it

[RonLe]

Exactly the same here, W10, updated PFsense, updated KAV, any browser, can´t access PFsense Web GUI bc “self signed certificate”. Some very few times appers “I Know the Risks”, time do be happy. But 95% can´t access. Thinking to change to another AV.

[richbuff]

Welcome. If the issue remains unresolved after review of this topic thread, 

please contact Tech Support: https://my.kaspersky.com/support/

Please attach the following items to your Tech Support request: 

a. Description of the issue.
b. Screenshot, as needed.
c. GSI