Reply

Re: Admin Portal Routerlogin digital certificate expired

Jaroslaw
Guide

Admin Portal Routerlogin digital certificate expired

It is in fact:

 SXR80 and  SXS80

Certificate not valid, Admin site set as not secure?

Would anybody know how to fix that issue, please? New Orbi System lates FW and still that issue, no matter which browser.

Hardware Version   SXR80
 
Firmware Version   V3.2.5.102
 
GUI Language Version   V1.0.0.411
 
Operation Mode   Router
Model: SRK60B03|Orbi Pro Tri-Band Business WiFi System
Message 1 of 6

Accepted Solutions
schumaku
Guru

Re: Admin Portal Routerlogin digital certificate expired


@Jaroslaw wrote:

There is no issue whatsoever with NIGHTHAWK, page opens up without any warning, all works fine no issues with the cert or usafe connection warning.


Still unclear which Nighthawk model and firmware you are referring to. As I said before, it's well possible certain models and firmware still come with firmware builds holding the fully signed (and trusted) certificate, including the private key.

 


@Jaroslaw wrote:

Nothing like that:

This server could not prove that it is orbilogin.com; its security certificate is not trusted by your computer's operating system. This may be caused by a misconfiguration or an attacker intercepting your connection.

Proceed to orbilogin.com (unsafe)


Again, Netgear stopped from distributing the "hot" signed certificates, because distributing the certificate and the private key to many thousand systems (and firmware downloads) does break the certificate trust. Gee, with the private key we can decrypt any of these connections - virtually useless (beyond of that it looks good and trusted).

 

 

 

 

View solution in original post

Message 6 of 6

All Replies
schumaku
Guru

Re: Admin Portal Routerlogin digital certificate expired


@Jaroslaw wrote:

It is in fact:

 SXR80 and  SXS80

Certificate not valid, Admin site set as not secure?

Would anybody know how to fix that issue, please?

Nothing wrong - it's a self-signed certificate only.

 

Certificate issuer/signer prohibit distributing the signed certificate, specifically the private key, for the obvious reason, thus the Web server located on the router itself can't be trusted therefore. 

 

Netgear used to do this on earlier firmware builds all over the product lines, so it looked much better.

 

Even if Netgear would offer the ability to replace the certificate: The big majority of users don't have their own DNS domain name, thier own proper set-up DNS environment, neither for the LAN and the WAN/Internet access - and when using e.g. just the IP (as for the satellites) it's still not a "secured" green connection anyway.

 

[edit] If it's expired (it should not be on a "current" firmware), some lazy RD failed to update the self-signed certificate, and QA failed to check it  ... @BruceGuo please check with the team [/edit]

Message 2 of 6
Jaroslaw
Guide

Re: Admin Portal Routerlogin digital certificate expired

Thanks! strange that in NightHawk there is no such issue and you can login without any issues.

Model: SRK60B06|Orbi Pro Tri-Band Business WiFi System
Message 3 of 6
schumaku
Guru

Re: Admin Portal Routerlogin digital certificate expired

Whatever Nighthawk model and firmware you are referring to here. Check the certificate in the browser, I guess there is still a signed cert on your Nighthawk router.

Message 4 of 6
Jaroslaw
Guide

Re: Admin Portal Routerlogin digital certificate expired

There is no issue whatsoever with NIGHTHAWK, page opens up without any warning, all works fine no issues with the cert or usafe connection warning.

Nothing like that:

This server could not prove that it is orbilogin.com; its security certificate is not trusted by your computer's operating system. This may be caused by a misconfiguration or an attacker intercepting your connection.

Proceed to orbilogin.com (unsafe)

Message 5 of 6
schumaku
Guru

Re: Admin Portal Routerlogin digital certificate expired


@Jaroslaw wrote:

There is no issue whatsoever with NIGHTHAWK, page opens up without any warning, all works fine no issues with the cert or usafe connection warning.


Still unclear which Nighthawk model and firmware you are referring to. As I said before, it's well possible certain models and firmware still come with firmware builds holding the fully signed (and trusted) certificate, including the private key.

 


@Jaroslaw wrote:

Nothing like that:

This server could not prove that it is orbilogin.com; its security certificate is not trusted by your computer's operating system. This may be caused by a misconfiguration or an attacker intercepting your connection.

Proceed to orbilogin.com (unsafe)


Again, Netgear stopped from distributing the "hot" signed certificates, because distributing the certificate and the private key to many thousand systems (and firmware downloads) does break the certificate trust. Gee, with the private key we can decrypt any of these connections - virtually useless (beyond of that it looks good and trusted).

 

 

 

 

View solution in original post

Message 6 of 6
Top Contributors
Discussion stats
  • 5 replies
  • 358 views
  • 2 kudos
  • 2 in conversation
Announcements