For Chrome devices to work on a domain with SSL inspection, some sites need to be exempt from inspection a practice that normally involves whitelisting certain hostnames on your proxy server.
There's an easy way to check the exemptions are in place?
Step 1: Boot up and sign in to your Chromebook or login as guest. You might need an unmanaged Chromebook for this.
Step 2: Use the keyboard shortcut Ctrl + Alt + T to open the Crosh terminal in your browser.
Now type:
network_diag --hosts
or, if you use a HTTP proxy:
network_diag --hosts --proxy http://192.168.1.1:8888
where http://192.168.1.1:8888 is the hostname and port of your HTTP proxy.
Step 3: The command will attempt an SSL connection to each of the hosts in the whitelist and report PASS / FAIL. If all hosts are not passing, check your firewall / proxy to confirm the host is properly whitelisted.
Sample command and output:
crosh> network_diag --hosts
checking accounts.google.com... PASS
checking accounts.gstatic.com... PASS
checking accounts.youtube.com... PASS
For full information see the help article.
There's an easy way to check the exemptions are in place?
Step 1: Boot up and sign in to your Chromebook or login as guest. You might need an unmanaged Chromebook for this.
Step 2: Use the keyboard shortcut Ctrl + Alt + T to open the Crosh terminal in your browser.
Now type:
network_diag --hosts
or, if you use a HTTP proxy:
network_diag --hosts --proxy http://192.168.1.1:8888
where http://192.168.1.1:8888 is the hostname and port of your HTTP proxy.
Step 3: The command will attempt an SSL connection to each of the hosts in the whitelist and report PASS / FAIL. If all hosts are not passing, check your firewall / proxy to confirm the host is properly whitelisted.
Sample command and output:
crosh> network_diag --hosts
checking accounts.google.com... PASS
checking accounts.gstatic.com... PASS
checking accounts.youtube.com... PASS
For full information see the help article.
No comments:
Post a Comment