I know the option isn’t available in WebUI but perhaps it’s something that could be added. I’d like the ability to allow unencrypted Plex server access for clients that connect locally (on the same subnet) but enforce encrypted connections for those users that connect remotely/over the WAN.
My case for local unencrypted access is for 2 reasons: 1.) I have a small LG TV that doesn’t support SSL on Plex, setting secure connections to ‘disabled’ fixes this 2.) I have a 4K library that’s only accessible locally where the performance benefits from being streamed with ‘secure’ off
Setting ‘secured access’ to ‘preferred’ still allows remote clients to connect unencrypted and although I could demand all users enable their secure option on their client I’d rather the server just flat out refuse to serve these clients.
It’s in there somewhere. I have seen allow unencrypted on local network. Or a setting to this effect. When setting up a new pms. When trying to find it again, I can’t. I am pretty sure I saw it under general settings. Not network, where you would expect it to be. It is definitely an option on plex apps. I have old hardware running old apps on the lan too.
The only way to get to this setting. Is to log into localhost:32400/web/index.html On your server, settings General & advanced.
Allow Fallback To Insecure Connections [On Same Network]. Save Changes, Since I run a headless linux server. I had to connect a monitor, keyboard & mouse. Logon then startx to enter the gui to do this.
Thanks for the link, Preferences.xml was the first place I looked. It wasn’t listed. I assumed that not all settings would be listed if not used. So I went looking for the ‘Fallback To Insecure Connections’ setting by logging into the server directly. After changing & saving the setting. I checked Preferences.xml again. And it is still not listed. After reading this page I went through the link you sent. And it isn’t there either. It must be saved elsewhere.
If I wish for local unencrypted playback but also need encrypted access where the client supports it, I need to set encryption to ‘Preferred’. However this leaves open the possibility a remote/WAN side client is able to connect to my server on an unencrypted connection.
So then you might say ‘well set to ‘required’ then’ , fine but this will kill local unencrypted access. My request is for a ‘Encryption required on WAN’ option but alas it seems this isn’t available.
My solution for the time being is to use a Tautulli script that kills remote/WAN playback when it detects non-ssl connection. If anyone else has a use for this I found it here: JBOPS/killstream at master · blacktwin/JBOPS · GitHub
I figured this out also. I am having more problems. At this point all local apps and just browsing to the server say it is unencrypted. I have spent too many hours over the last 4 days on this. Have real work I need to do. Shutting it down till next week.
