Troubleshooting: Mixed-Content Warnings When Using SSL Offloading

DNN Version: 09.02.00

12/08/2019 • 1 minute to read

Contributors 

12/08/2019  • 1 minute to read  • Contributors 

Symptom

Mixed-content warnings, such as:

• Internet Explorer: Only secure content is displayed.
• Firefox: Firefox has blocked content that isn't secure.
• Chrome: This page includes script from unauthenticated sources.

Possible Cause

A secured page (HTTPS) contains unsecured links (HTTP) to some resources (images, scripts, etc.).

Solution

1. Configure the SSL Offload Header Value as required by your load balancers.

   Examples:

   • Citrix supports custom headers and recommends using SSL_REQUEST.
   • Weblogic uses a fixed header of WL-Proxy-SSL.
   • BigIP/F5 supports custom headers via their iRule rewrite function.

2. Go to the page to edit.

3. Go to Persona Bar > Edit.

4. In the Edit Bar, click/tap the Page Settings icon.

   

5. Go to the Advanced tab, and then the More subtab.

6. Under Security, enable Secure Connection.

   

How to: Increase the Maximum File Size for UploadError: Login IP Filtering Is Currently DisabledError: Another User Has Taken Action on the PageError: Unknown Server Tag - DNNComboBoxError: Could not load file or assembly 'AWSSDK' or one of its dependenciesError: SQL TimeoutError: ArgumentNullException After a Move or an UpgradeTroubleshooting: Missing Resources After An UpgradeTroubleshooting: Profile Image Not ShownTroubleshooting: Page Remains in Draft ModeTroubleshooting: Unable to Remove Page Redirect URLsTroubleshooting: Site Theme Does Not LoadTroubleshooting: Incomplete Content LocalizationTroubleshooting: Missing Persona Bar