Popup for secure and non secure pages

This is happening at the browser level.

 

 

The only instructions I know is to turn it off at the browser

 

 

In Internet Explorer, go to Tools, Internet Options, click the Security tab; make sure that in "Select a zone..." window that Internet is selected.

 

Click Custom Level and scroll down about half way to "Display mixed content" in the Miscellaneous section.

 

Change it from Prompt to Enable.

 

Click OK, Yes, and OK. The change should take effect immediately.

 

 

CB

 

Hi ucgwebmaster,

 

 

If the app includes http:// references within https pages, you would need to change the app to not use absolute references to http:// or rewrite the references to https:// to avoid the browser warning about insecure content.

 

 

If you can't fix this within the application, you can use configuration changes and/or an iRule on LTM to do it. First, check where the http:// reference is (response headers and/or response content). You can use a browser plugin like HttpFox for Firefox or Fiddler for IE. If the http:// reference is in the Location header, you can use the Rewrite Redirects field on the HTTP profile to rewrite this from http:// to https://. If the http:// reference is in the response payload you can use a stream profile and STREAM::expression to configure the stream filter. There are a few examples on the STREAM::expression wiki page (Click here). If the string you're replacing is a different length than the replacement string, you'll need to create a custom HTTP profile with response chunking set to rechunk. This gets around a mismatch in content length as chunked responses don't use a content length header.

 

 

Aaron

I know about the IE option, but if you do that the lock for https goes away. I am going to speak with the development team and simply remove the http references. Funny it works fine in Firefox