Delete the SSL Certificate Cache on ProxySG

book

Article ID: 171062

calendar_today

Updated On:

Products

SG-300 SG-600 SG-9000 SG-900 SG-S500 SG-S400 SG-S200 SWG VA-100

Issue/Introduction

Clients / hosts may receive an expired SSL certificate warning when the SSL Forward Proxy fails to purge expired SSL certificates from the Cache

Resolution

Enter the following Command Line Interface (CLI) commands in enable mode to clear the certificate cache on the ProxySG appliance:

 

ProxySG#conf t       
Enter configuration commands, one per line.  End with CTRL-Z.
ProxySG#(config)ssl  
ProxySG#(config ssl)clear-certificate-cache

 

clear-certificate-cache is actually a hidden command, so there is no help content displayed for it; however, an ok message should show after executing the command.

Confirm that the cache has been cleared by going to the following URL:

https://<proxyip:port>/sslproxy/certcache