Last Modified: Nov 07, 2022
Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4
12.0.0, 11.6.0 HF5
Opened: Jul 25, 2014 Severity: 2-Critical Related Article:
Related Article: K16994
After evaluating the access policy with an on-demand cert auth agent, there will be a connection reset.
The user is not redirected back to their original landing URI. However, in known reproductions the access policy has already completed, and been set to allow. Future requests from the user will be correctly proxied to the backend.
This issue occurs under these conditions: SWG Transparent Proxy with a On-Demand Cert Auth agent.
If on-demand cert auth is needed, there is no workaround.