2009
07.27

Problem with WebEMS

Category: RMIT Diary / Tags: no tag / Add Comment

Recently, when logging into the school’s WebEMS, you will get either (or both) of the following screens.

Internet Explorer:

Internet Explorer SSL Certificate Problem

or in Firefox:

SSL Problem in Firefox

Although the website seems to be down, it’s not. Here’s what happened.

In order to protect your privacy, the WebEMS makes use of a secured protocol called HTTPS (Look at the prefix of the URL) which encrypts the data transmitted between the server and your browser, preventing it from being stolen. This involves a digital certificate which verify the server’s authority. Unfortunately, the certificate expired on 25/7 and needed to be extended/replaced, resulting the annoying alerts you have seen in your browser since then.

That the ITS failed to replace the certificate in time doesn’t mean we (the students) cannot access the WebEMS. You can temporary skip the alert and continue to work with the old (expired) server certificate. Here’s a short guide.

In Internet Explorer

Click “Continue to this website (not recommended).“.
IE fix: Step 1

* I know it looks dangerous yet it’s the most simple way to get through the situation.

For Firefox, it’s a little bit more complicated:

Click “Or you can add an exception…
Firefox: Step 1

Click “Add Exception“, a dialog will show up.
Firefox: Step 2

Click “Get certificate” then “Confirm Security Exception”.
Optionally, if you select “Permanently store this exception”, then you won’t have to do this again next time accessing WebEMS.
Firefox: Step 3

And you’re in!!!
IE: DoneFirefox: Done

Could you please help me to spread this little tutorial? I think it’s necessary to get the timely update from the school these days and email is a good way to do so.

Update: Certificate updated. Problem solved.

Share on Facebook

7 comments so far

Add Your Comment
  1. dkhang said: 2009.08.08 13:01

    I know this problem, just thinking about create another website with domain:
    https://vvebmes.rmit.edu.vn and give it to everyone with a great tutorial to overcome the certificate problem. Hope that I can gain a database of email-password :) )

  2. ThoaiOnline said: 2009.08.08 18:31

    Ah, there isn’t such a thing called “database of email-password” because the passwords are all encrypted. But well, if you want to get every email address in the school, extract them from the global address book; pay a visit to the active directory server as well. If you want to get some accounts, bring your laptop here and catch them in the air or on the wire. Yeah, I know you get what I mean.

  3. dkhang said: 2009.08.16 09:33

    You do not understand what I mean, guys.
    I create another website with the very similar domain name:
    http://vvebmes.rmit.edu.vn compare to http://webems.rmit.edu.vn/
    And what the hell I have to encrypt guys???It is my website, my domain, my host. People just type username-password in to my website, I store them in database and use them to fill in the form, get the cookies and redirect the browser to the real webems.

  4. ThoaiOnline said: 2009.08.16 12:09

    In that case, you still need to break into the DNS first.

  5. dkhang said: 2009.08.18 07:37

    What do you mean break into DNS???Just register a domain with the similar name

  6. Thoai Nguyen said: 2009.08.18 12:59

    Gee, have you forgotten that the rmit.edu.vn is registered by our school and any of its sub domain names are under their control.

  7. dkhang said: 2009.08.24 07:15

    Ah, yes, it’s a big problem. I forgot about the whole domain, will try another way later

Your Comment