ProxySG returning "Error: Invalid condition for <Cache> layer" on policy push

book

Article ID: 208927

calendar_today

Updated On:

Products

Management Center Management Center - VA Management Center - VA ProxySG Software - SGOS ISG Proxy ISG Proxy Advanced Secure Gateway Software - ASG

Issue/Introduction

When Management Center push policy of VPM policy that has associated Shared Object applied to Web Content Layer to ProxySG/ASG, it returns   "Error: Invalid condition for <Cache> layer" .

Cause

ProxySG/ASG VPM's Web Content Layer does not accept server.certificate.hostname trigger.  Shared object that has this triggered and applied to Web Content Layer, this will cause the ProxySG to throw an invalid condition error.

Environment

Management Center 

ProxySG / ASG with Web Content Layer

VPM policy associated with  URL list Shared Objects 

Resolution

Remover/uncheck the server.certificate.hostname under Shared Object Advance Settings:

E.g.

Navigate to the Shared object in question  and click the the gear icon located on the right hand side.

 

Uncheck the "Include server.certificate.hostname trigger" option and save.   

Attachments