Network security is critical for any organization in the modern world. However, sometimes it gets in the way and prevents you from accessing the sites you need.

Are you using Zscaler, Digital Guardian, CensorNet (USS), or Other Security Software?

These pieces of software may cause some issues. We have customers who have successfully resolved those issues and shared their techniques.

Zscaler

If you have Zscaler and are not able to access Career Fair Plus, we have reports that adding an SSL bypass rule for the firestore.googleapis.com domain will resolve blocking issues with Career Fair Plus. Here is a link for more information: https://help.zscaler.com/zia/controlling-access-google-consumer-apps

Also helpful is configuring SSL Certificate Pinning for Google Shared Services as outlined here:

https://help.zscaler.com/zia/certificate-pinning-and-ssl-inspection

Digital Guardian

From a customer:

Digital Guardian will need to make an exception for the CareerFair domain and Firebase domains and the app works for us in Chrome.

Speaking in DG parlance, DG created a dynamic group with the exceptions to the policy and then assigned the workstations to the dynamic group that needed the exceptions. Another option is to add the exclusion for all workstations which just needs the exceptions added to policy.

CensorNet (USS)

The USS gateway proxy applicate is version 1.2.0 and above

There is an SSL interception bypass for firestore.googleapis.com (this bypass will be necessary for initial login into the portal)

Other Security Software

Every organization uses a different set of security tools to try to keep their network and users safe. If you don't use Zscalar or Digital Guardian, but none of the other tips in this article are helping, we recommend reviewing the tips for those platforms anyways to see if any apply to your security software as well.

Specifically, customers have reported the most luck adding an SSL decryption bypass rule for firestore.googleapis.com (or for googleapis.com in general), and also configuring their software to handle SSL Certificate Pinning (see the Zscalar section, above).

Don't have Zscaler, Digital Guardian, CensorNet, or another security software?

Here are some things you can try if you don't use Zscaler or Digital Guardian and your network's security settings are preventing you from accessing your Career Fair Plus virtual fair.

Use a Different Network

The first and easiest thing to try is to access the Career Fair Plus web app using a different network that doesn't have the same restrictions.

This could mean using your home Wi-Fi network, using a cellular connection if you're on a phone or tablet with that capability, or even trying your company's guest Wi-Fi if that has fewer restrictions.

Use a Different Device

If you're using a company-issued computer and changing your network either didn't work or isn't an option, then the computer itself may have security measures that are blocking your access.

Try accessing the Career Fair Plus web app using a personal computer or mobile device to see if that solves the problem.

See if Your IT Department will Allow-List Our Application

If you have some time before your fair, and using a different network or device isn't an option, you can try to work with your IT department to unblock the Career Fair Plus site.

The Career Fair Plus application uses Google's Firebase and Firestore applications to serve up the data necessary for the application to run. You or your IT department can use this link to test to see what portions of Firebase or Firestore are being blocked by the network and whitelist them, allowing you and your co-workers access.

Copy the following text to send to your IT department:

Hi,

I am attending an upcoming virtual career fair that is using the Career Fair Plus platform. It appears that our network is blocking the ability for the Career Fair Plus web app to contact Google Firebase, which supplies schedule and candidate data to the application.

Would it be possible to allow the following on our network, at least for myself:

The following URLs need to be allow-listed:

  • www.googleapis.com
  • accounts.google.com
  • iam.googleapis.com
  • iamcredentials.googleapis.com
  • fcm.googleapis.com
  • firestore.googleapis.com
  • firebasestorage.googleapis.com
  • longrunning.googleapis.com
  • storage.googleapis.com
  • www.google-analytics.com
  • www.googletagmanager.com
  • s3.amazonaws.com
  • *.s3.amazonaws.com
  • cdn.careerfairplus.com
  • career-fair-plus-production.firebaseio.com

For Whereby we need port 443 for both TCP and UDP need to be open

In addition if the above doesn't resolve the issue, please continue with the list below:

Thank you for your assistance.

Regards,

Contact Career Fair Plus Technical Support

If none of the above options work, or there is not enough time to try the IT route, reach out to our support team at support@careerfairplus.com and we can work with you to find a solution that will allow you to meet with any candidates that have booked reservations.

In order to help us diagnose your issue more quickly, please provide a screenshot of your browser's development console at the time you're experiencing the issue.

Did this answer your question?