Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Failed to auto select SSL parameters

puneeth | Last updated: Jan 11, 2016 06:22AM UTC

I'm trying to access the Single sign on app in a UAT environment, but I get an error in browser saying : "Received fatal alert: close_notify" In BURP alert : it says "failed to autoselect ssl parameters <URL>". Upon installing the BURP certificate in browser I tried below steps: 1. Mozilla v43 - Disabled security.ssl3.dhe_rsa_aes_128_sha 2. tried IE 8 - no go 3. Replaced JCE policy 4. started burp with java -jar -Djsse.enableSNIExtension=false -Xmx1g burpsuite_pro_v1.5.20.jar and java -Dsun.security.ssl.allowUnsafeRenegotiation=true -jar /path/to/burp.jar Still not working. The application loads fine in IE8 when proxy is disabled. Note: App is accessible by NTML auth which I have embedded in "platform authentication". self generated certificate has been installed on the server. Could you please help me.

PortSwigger Agent | Last updated: Jan 14, 2016 11:37AM UTC

This issue is occurring between Burp and the server, so changing browsers probably won’t help. We would suggest connecting directly to the target using your browser, and seeing which SSL protocol and ciphers are selected. Then, in Burp, go to Options / SSL / SSL negotiation and choose only the items that the browser chooses. See if that enabled Burp to connect successfully? If not, we would suggest playing with the checkbox options underneath the ciphers config to see if those make any difference.

PortSwigger Agent | Last updated: Feb 19, 2016 09:17AM UTC

Try disabling that cipher at Project options / SSL / SSL negotiation / Use custom protocols and ciphers. If you prevent this cipher from being selected, then it's possible that a different one will be used that doesn't cause any problems.

Burp User | Last updated: Feb 14, 2017 09:50AM UTC

have a error when use the burp proxy on https Burp Suite Professional Error Server selected improper ciphersuite TLS_ECDHE_RSA_WITH_RC4_128_SHA how to slove it?

Burp User | Last updated: Jun 21, 2019 01:39PM UTC

Was wondering if this worked for you?

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.