Authenticating user with RSA certificate through iPhone' Safari browser not working with IIS website. I cant get it working. IIS just gives up with "client certificate required" error and safari doesn't provide certificate. Client: iPhone 3G latest firmware CA and user certificates deployed (it shows them as unsigned) Server: II...
If you open the properties window of a certificate in the certificate manager in windows you will see both a friendlyname and description field. I'm trying to get to the description field programatically via powershell. When accessing the certificates via powershell's certificate provider cert: you get an object that only exposes the F...
Hi - Looking for some advice about the use of client certs to retro-fit access control to an existing app. Our company has an existing intranet app (classic ASP/IIS) which we licence to others. Up till now it's been hosted within each organisation that used it and the security consisted of "if you're able to access the intranet you're a...
Automatic certificate enrollment for [userid] failed to enroll for one Basic EFS certificate (0x800706ba). The RPC server is unavailable. I have been getting these errors for a few weeks, about a dozen every day. I checked the certificates with MMC and they are going to expire in 2 weeks. I cannot find an answer to these questions: ...
I have a Java main application running on my PC that can send XML data to a servelet and recieve XML data back. http://iamt.wisconsin.gov/IAM-WiEntUser/WiEntUserService?xml= I can use https://iamt.wisconsin.gov/IAM-WiEntUser/WiEntUserService?xml= from IE and Firefox because I they allowed me to load the private certificate. I want to u...
This question is all about solving a SslPolicyError.RemoteCertificateNotAvailable error. I have developed a TCP Server with SSLStream and a TCP Client for the other end. I authenticate the server with: sslStream.BeginAuthenticateAsServer I authenticate the client with: sslStream.BeginAuthenticateAsClient I am loading my client c...
Hi, I have to release my Adobe Air application but the build process was "setup" by a different developer. (He made a self signed cert and wrote a batch file to call adt for packaging the application). Adobe mentions that such self signed certificates are valid for 5 years. Now I have no idea when that certificate will expire as I don't...
We are working on creating an installation package for a WCF-based web service. The service uses message-level encryption via an installed certificate. I am trying to come up with an automated way to both install the certificate and set its permissions. Currently, we are manually installing the certificate via the MMC snap-in. After it ...
Hello everyone, I am doing self-signing certificate in my test environment. Here is more details about what I am doing. http://www.hanselman.com/blog/SigningPowerShellScripts.aspx My brief steps are (the purpose is to establish trust connection between computer C and computer A based on certificate), Making computer A a root CA by u...
Hello everyone, I am confused about the following concepts in makecert tool. Especially about what means location (-sr parameter) and store (-ss parameter). I read and get my confusion from the following link, I tried to find tutorials about what means "location" and "store", but finding nothing. Could anyone help to clarify please? Li...
Hi guys, The related link is this MSDN article. I am always confused about the term "subject", for example, sk option "Specifies the subject's key container location", sr option "Specifies the subject's certificate store location". What exactly mean subject? The certificate owner? The certificate issuer (e.g. the root CA which issue...
Scenario I'm trying to use certificates to sign documents. The first time that I sign, the OS prompts a dialog for user to set the PIN, but the next times it doesn’t. For security reasons, I need that every time that I sign, the OS asks the PIN to the user. Anyone knows how to do that? This is the code: ''// create ContentInfo Dim co...
Hi guys, Two simple questions about makecert command, Suppose I am using the following command, makecert -n "CN=PowerShell Local Certificate Root" -a sha1 -eku 1.3.6.1.5.5.7.3.3 -r -sv root.pvk root.cer -ss Root -sr localMachine my confusion is, will private key automatically registered somewhere in cerficate manager or the private...
Hello everyone, If we make the private key exportable (using -pe option in makecert), then in theory we have both an exportable private key and the public key (public key in certificate) -- which can be transferred or imported to another machine. So, my question is, why do we still need to create the .pfx file (key exchange file, which...
I would like to have Intenet Explorer allow me to choose an identity when connecting to a client-authentication enabled web server. Currently I have my Tomcat web server configured to use client authentication. I also have an ssl client accessing a keystore and successfully connecting to the web server. However when trying to get IE...
How can I programatically configure a virtual directory on IIS 6 to require SSL and client certificates from a starting point of having a suitable certificate already in the local certificate store, but, the current website (e.g. Default Web Site) having not been set up to use certificates? I know how to do this using the inetmgr GUI, b...
I'm accessing a smart card from c# through the Windows Certificate Store. This works well on many systems. On one system however, it doesn't. The smart card certificate is not added to the Personal Certificates. We need it to be in the certificate store in order to access it from C#, like this: X509Store store = new X509Store(StoreNam...
How would I accept a self-signed server certificate? Using the code below, I can only connect/authenticate after I accept the Server Cert using Safari. (void)secure:(NSString *)username credentials:(NSString *)login { NSURLCredential *userCredentials = [NSURLCredential credentialWithUser:username pass...
I'm doing a web application that utilizes an external web service. This external web service requires me to sign each of my requests. So I'm using WebServicesClientProtocol class and .NET 2.0 by first consuming the external web service and then manually edit the Reference.cs file and change the extended class from System.Web.Services.Pro...
In iPhone Developer Program Portal, there's a video to demonstrate how to create a development certificate and assign a private key Now I have finished the development process and starting to distribute I have created a "Distribution Certificate", but how do I assign a private key to this certificate? As it got the "CodeSign error: c...