Has anyone using a Bluecoat proxy experienced internet access issues after upgrading to mavericks? For the most part, Safari is basically unable to access internet sites - but Firefox and Chrome can access these sites using the same proxy.
+8How do you configure proxy on clients? Auto Discover? We use Blue coat and use auto discover (wpad) but I haven't tested safari in 10.9 much yet. Will take a look...
+10We do not have issues with our ProxySG and Mavericks. How is yours deployed? Inline, Transparent, Explicit? Are you doing client auth, if so is it from an exception page or Kerberos or what?
+12I am having the same issues with our BlueCoat proxies and Mavericks. OCSPD is the issue because the proxy is sending back a request for credentials and the OS isn't respecting it and not providing the credentials or prompting the users to input them.. I opened a ticket with Apple Enterprise support and they acknowledged that it is an issue. We were able to duplicate it, but the only resolution was to create a system keychain that grabs the users proxy credentials if they are stored in the keychain.
Unfortunately, that doesn't work for us because we force a password change every 30 days so it would need to be running constantly along with the fact that not all of our users store the proxy credentials in the keychain.
An alternate way around this would be to allow the OCSPD user agent header unauthenticated access to the internet through the proxy. I am having the same issues with Safari and iTunes. Allowing the user agent header string works reliably and the ocspd process can only be initiated via the OS so the risk is reduced significantly.
+6@jconte I was able to workaround the issue by turning off OCSP and CRL in Keychain > Preferences. Thinking back, we had to do the same thing in Lion to alleviate some proxy issues. I received the same feedback from Apple Support, that product management is aware of the issue and it will be addressed in an update - hopefully soon.
+9Turning off OCSP and CRL in the keychain prefs seems to work with Safari, but I'm still getting proxy prompts for the App Store when trying to run updates. We just received word from enterprise support that they anticipate a fix in 10.9.2.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.