[Wactclc-primo] [External] [ALMA-L] Ex Libris – HTTP Security Update

Kun, Lily lkun at spscc.edu
Mon Oct 30 11:45:58 PDT 2017 

Amy,

I'm not sure where you're getting the security warning, but this reminds me of a problem that I used to have.

If you're getting a security warning in Chrome or Firefox, it's probably because you're going from a secured site (https) to an unsecured site (http). When my college switched to a secured site (http to https), I kept on getting error messages whenever I used the Primo deep search box embedded in my library webpage because the Primo URL was still using an unsecured site (http). Easiest way to fix the problem I described is to make sure that your origination site and the destination site are either both secured sites (https) or both non-secured sites (http). Also, you can usually go from a non-secured site to a secured site with no problems at all, but if you go the other way, you'll get a security warning.

Hope this helps.

Lily Kun
Systems and Electronic Resources Librarian

 [cid:image001.jpg at 01CF17A6.5DF28AA0]
https://spscc.edu/library
lkun at spscc.edu<mailto:lkun at spscc.edu>
360-596-5436


?Amy,


If you're getting security warnings when clicking through EZProxy, then there isnt  really an issue related to Ex Libris configuration going on here.


In fact, I don't see any of our ExL products impacted by this change in Chrome, except the PBO, which does currently uses http instead of https:



Sounds like you're just experiencing an EZProxy security certificate issue of some kind


For best results these days, you really need to use a 'wildcard' SSL certificate for ezproxy, which I'm sure Adam will understand.


Could you post more specific info on how you generate the error you're seeing? And ideally a screenshot as well? I might be able to tell you more from that.



Wade Guidry - wadeg at bigbend.edu<mailto:wadeg at bigbend.edu>
Library Consortium Services Manager
Washington Community & Technical Colleges Library Consortium (WACTCLC)
509.760.4474
________________________________
From: Wactclc-primo <wactclc-primo-bounces at lists.ctc.edu<mailto:wactclc-primo-bounces at lists.ctc.edu>> on behalf of Whittaker, Shellie <ShellieW at bigbend.edu<mailto:ShellieW at bigbend.edu>>
Sent: Monday, October 23, 2017 8:29 AM
To: WACTCLC Primo discussions
Subject: {Spam?} Re: [Wactclc-primo] [External] [ALMA-L] Ex Libris – HTTP Security Update

Amy,

You should definitely open a case for this…even if someone else has.

Shellie Whittaker
WACTC Library Consortium
shelliew at bigbend.edu<mailto:shelliew at bigbend.edu<mailto:shelliew at bigbend.edu<mailto:shelliew at bigbend.edu>> | (360) 452-5264

From: Wactclc-primo [mailto:wactclc-primo-bounces at lists.ctc.edu] On Behalf Of Herman, Amy
Sent: Monday, October 23, 2017 8:23 AM
To: WACTCLC Primo discussions <wactclc-primo at lists.ctc.edu<mailto:wactclc-primo at lists.ctc.edu>>
Subject: [Wactclc-primo] FW: [External] [ALMA-L] Ex Libris – HTTP Security Update

Has anyone yet opened a SF case to request  a “special security certificate be provided by Ex LIbris in order to enable HTTPS connectivity”?  We had hoped we’d solved the Chrome/Not secure warning issue by updating our ezproxy software and obtaining a public security certificate for the server, but after doing that on Friday the problem persists today.  I’m hoping that perhaps this extra step mentioned this morning by Ex Libris will help.

Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337 aherman at olympic.edu<mailto:aherman at olympic.edu<mailto:aherman at olympic.edu<mailto:aherman at olympic.edu>> | 360-475-7256

From: Alma [mailto:alma-bounces at exlibrisusers.org] On Behalf Of Asaf Kline
Sent: Sunday, October 22, 2017 7:04 AM
To: Alma group <alma at exlibrisusers.org<mailto:alma at exlibrisusers.org<mailto:alma at exlibrisusers.org<mailto:alma at exlibrisusers.org>>>
Subject: [External] [ALMA-L] Ex Libris – HTTP Security Update

Dear colleagues,

Recent security changes made by Google may cause use of HTTP pages to trigger a “Not Secure” warning on Chrome browsers.

Here at Ex Libris, we have taken the necessary steps to address the matter.
If this is relevant to your institution, please click here<https://knowledge.exlibrisgroup.com/@api/deki/files/58263/Security_Update_Customer_Announcement_-Chrome_Security_Alert_for_Non-TLS_sites.pdf?revision=1> to learn more about which Ex Libris products support HTTPS and how to enable HTTPS on your systems.

The full details can also be found on the Customer Knowledge Center: Chrome browser identifies connection as "Not Secure"<https://knowledge.exlibrisgroup.com/Cross_Product/Knowledge_Articles/Chrome_browser_identifies_connection_as_Not_Secure?mt-draft=false>

If you have any questions regarding this, please feel free to contact us by submitting a case through the Support Portal<http://exlidp.exlibrisgroup.com/>.

Best regards,
Global Operations
Ex Libris, a ProQuest Company



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ctc.edu/pipermail/wactclc-primo_lists.ctc.edu/attachments/20171030/81ae8020/attachment-0002.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Picture (Device Independent Bitmap) 1.jpg
Type: image/jpeg
Size: 2745 bytes
Desc: Picture (Device Independent Bitmap) 1.jpg
URL: <http://lists.ctc.edu/pipermail/wactclc-primo_lists.ctc.edu/attachments/20171030/81ae8020/attachment-0002.jpg>

More information about the Wactclc-primo mailing list