Authentication issues

Prev Next

Available in Classic and VPC

You might run into the following problems when using Web Security Checker. Find out causes and possible solutions.

Logging out when viewing the authentication result screenshot

The authentication result screenshot is displayed as logged out.
The authentication results screenshot shows a pre-login state.

Cause

You may get logged out if cookies acting as sessions cannot be reused on different IPs due to IP security or other security policies.

Solution

If session cookies cannot be reused across IPs, diagnosis in a logged-in state is not available. Temporarily disable IP security or related security policies.

Authentication hash file errors occur when diagnosing a web server built on another CSP

An authentication hash file error occurs during the diagnosis of services hosted on another CSP.

Cause

Web Security Checker service’s NAT IP must be allowed access to the target web server through firewall or other network device exceptions.

Solution

To identify the Web Security Checker IP that needs exception handling in firewalls and network devices, take the following steps:

  1. In NAVER Cloud Platform console, click i_menu > Services > Security > Web Security Checker in order.
  2. Click [Create diagnostic task].
  3. Enter diagnostic target information and click [Verify Ownership].
  4. Check Web Security Checker IP in Verify Ownership window.
  5. Add the specified IP to the exceptions in your firewall and other network devices.

Recognized as a third-party web server after applying WAF LB

After applying WAF LB, the system recognizes it as a third-party web server during ownership verification.

Cause

When WAF LB is newly applied, Web Security Checker system may not recognize it as the user’s asset.

Solution

The steps to resolve this issue are as follows:

  1. Enter diagnostic URL and click [Verify Ownership].
  2. Check the details in the Verify Ownership window, and then click [Generate and Download Authentication File].
  3. Upload the downloaded file to the specified path on the target web server.
  4. In the verify ownership window, click the checkbox and click [Confirm].
  5. Configure the settings as done during the initial diagnosis, and then click [Complete Settings].

Authentication hash file upload issue

A message requesting an authentication hash file upload appears while using NAVER Cloud Platform WAF LB.

Cause

You must upload the authentication hash file even when you use NAVER Cloud Platform’s WAF LB.

Solution

  • Please upload the authentication hash file.
  • If you have uploaded the authentication hash file but failed in verification, the file may have been blocked by Web Security Checker's web firewall during scanning. Please contact the Security Monitoring service for customer inquiries.
Note

If you're still having trouble finding what you need, click on the feedback icon and send us your thoughts and requests. We'll use your feedback to improve this guide.