Sorry, that it isn't exactly programming question, but it is also interest. So my question is: where from user private key comes? Whether it comes in key-pair together with public key in certificate that is generated in CA, or it is generated in client OS, when only thumb-print, public key and so on comes from CA? Thank you for ahead. ...
Hi all, Since I'm very new to SSL certificates, and the creation and usage of them I figured maybe StackOverflow members can help me out. I'm from Holland, the common way of online payments is by implementing iDEAL. An online payment protocol supported by the major banks. I have to implement a 'professional' version. This includes crea...
Is it possible to import the valid certificate of the windows server, where VisualSVN ist installed, into VisualSVN ? ...
We provide a hosted web application for multiple companies. Now we see the need to provide the ability for uses to 'auto login' if the are already logged into/identified by their individual local domains. What would be the best solutions for this? Would it be to have a certificate associated to their local AD account that our web applica...
ENVIRONMENT: In an active directory environment we are using ActivClient to copy a digital signing certificate from a smart card to the current user store upon smart card insertion. The smart card certificate is equipped only with digital signature, non-repudiation purposes. PROBLEM: After the certificate is copied from the smart car...
I have gone many hours trying to get this working........ Here are my specs: -Windows server 2008 (installed IIS7 after initial AMI) -Sql server 2005 Standard (Installed registered copy) -.NET Framework 3.5 (website with SSL needed) Any instance from my most current AMI with everything installed and the website running will reboo...
This is driving me completely and utterly nuts... Basically I have a PDF form generated by TCPDF and want to set the user rights (using setUserRights) for that PDF so that users can save the form with the data they inputted. The TCPDF manual isn't really helpful at this particular point and states that you need a "signing certificate" to...
Hi, Can someone please tell me how to create a certificate from a root certificate (Certificate Chain), all day googling I am still strugling to find some thing useful. I need to use Windows API only. Cannot use any tools like makecert etc..Cannot use openssl also.. I have a root certificate (self signed), at the time of my client so...
Hi all. This is my situation: We are in the process of replacing a certificate store currently hosted on Sun's iPlanet with Microsoft's Lightweight Directory Services (new version of ADAM with Server 2008). These certificates have been imported into LDS into an application partition (say o=myorg, C=AU). Under this structure I have ...
Is there a method for JavaScript running in a browser to determine which CA certificate is being used to authenticate the remote host for the browser's current SSL connection, and also obtain properties of that certificate, such as the name of the CA? If not, are there any other options for programatically obtaining this information, su...
My team is developing a number of WPF plug-ins for a 3rd party thick client application. The WPF plug-ins use WCF to consume web services published by a number of TIBCO services. The thick client application maintains a separate central data store and uses a proprietary API to access the data store. The thick client and WPF plug-ins are ...
I have implemented a web service with server and client authentication using keytool. The problem is that this authentication doesn't work if I don't include the name of the host in it. For example: keytool -genkey -alias myAlias -keyalg RSA -keypass myPassword -storepass myPassword -keystore my.keystore -dname "CN=myhost" But I don't...
Hi, I'm trying to access an HTTPS based web service URL from a web/ear application deployed on a Glassfish application server domain. We have obtained the certificate from the vendor that exposes the HTTPS URL What are the steps required for installing SSL certificates in order to access the web service ? (Though I know the outline, let...
I would like to learn the basics of digital certificates. Including how to create a self-signed certificate. Does anyone know a good introductory text about this? ...
Hi, through the bouncycastle wiki page I was able to understand how to create a X.509 root certificate and a certification request, but I do not quite understand how to proceed concept- and programming wise after that. Lets assume party A does a cert request and gets his client certificate from the CA. How can some party B validate A's...
need to install certificates for VPN access, but when I load a profile by "iPhone Configuration Utility" in the VPN configuration i can not select it. Why? what type of certificate is needed? Regards ...
I'd like to send a binary to a client without the source code. How can here sign the app for distribution on it's own name without recompiling everything (since he does not have the source code) I'm not talking about adhoc distribution. I've tried to codesign -f with another distribution profile but itunes connect refuses it. ...
Hi, we have a VSTO outlook add-in we'd like to silently deploy to everyone via AD. I'm signing the App with a "Code signing" certificate (requested certmgr from AD). If I add this certificate to my Trusted Publishers, then I can silently install the signed app via the VSTOInstaller.exe (with the /S switch). We don't want to have to in...
I've been having this problem for a while and it's driving me nuts. I'm trying to create a client (in C# .NET 2.0) that will use SAML 1.1 to sign on to a WebLogic 10.0 server (i.e., a Single Sign-On scenario, using browser/post profile). The client is on a WinXP machine and the WebLogic server is on a RHEL 5 box. I based my client larg...
These days I tried to apply a free third pary CA ( www.cacert.org & www.freeca.cn ) and then set up Tomcat SSL with the CA. My purpose is to eliminate the "Certificate Error" page when accessing https://... from a client browser. But it's a little hard for me to get around it. My steps to apply a free CA, from www.freeca.cn I used keyt...