Expedia.com does not fully load when HTTPS Inspection is enabled

Support Center > Search Results > SecureKnowledge Details

Technical Level

Solution ID	sk118392
Technical Level
Product	HTTPS Inspection
Version	R77.30, R80.10, R80.20, R80.30
OS	Gaia
Platform / Model	All
Date Created	07-Jul-2017
Last Modified	11-Jun-2020

Symptoms

Expedia.com does not fully load when HTTPS Inspection is enabled.
Refreshing the page several times displays the page correctly.

Cause

Expedia.com has two certificates, one for North America and the other for Europe.

For some reason, the site gives out either certificate.

When the user browses to the site, the Security Gateway stores the certificate in the cache, without checking its Subject Alternative Names (SAN), and checks only the Distinguished Name (DN).

When the certificate from the Security Gateway is presented to the client, the Subject Alternative Name will sometimes not match, thus causing the page to not fully load.

Solution

Note: To view this solution you need to Sign In .