I would like, when running a local program, for this program to be able to check in the current directory for a certificate and only if it finds this certificate to be valid, to give the user access to the rest of its functionalities. Does it sound far-fetched? Or is this similar to what AIR or iPhone applications do? What certificate ...
Hi, I try to connect to an LDAP server by LDAPS protocol, and I define the URL using the IP of the server. The keystore I use contain a certificate which was issued to this server, but the subject DN contain the hostname. Shouldn't it fail? Here is the code: public class LdapConnection { private String host = "1.2.3.4"; //the c...
In J2ME when you sign a JAR with a certificate chain that includes an intermediate certificate (such as one from obtained from Verisign), does the device need to have the intermediate certificate installed as well as the root certificate during verification? I am guessing the answer is no because the intermediate certificates are stored...
Trying to do basic SSL-authenticated Web Service using Visual Studio 2008 .NET 3.5 "Service Reference" object created from WSDL. We have tried three methods 1) Setting Client Certificates (to match server-supplied), 2) setting store for server-supplied, and 3) using custom server validator. The .NET exception (detailed below) is consis...
I have been trying to get information regarding expired ssl certificates using python 3 but it would be nice to be able to get as verbose a workup as possible. any takers? So far i have been trying to use urllib.request to get this info (to no avail), does this strike anyone as foolish? I have seen some examples of similar work using o...
Hey there, We're having an issue with securing an intranet / internet website with SSL where we can't know the qualified domain name in advance. Basically, I'm trying to make a program that will be installed on a webserver outside my direct control, to be accessable over intra- or internet. In either case I want it to be secure via ...
I'm making an httpwebrequest using a public Root authority Certificat file X509. I only have the public key, not the private key. Everything works fine from a Console app but it does not work from an asp.net app. I get the error: "The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure chan...
Hello, I am trying to encrypt and then decrypt files using asymmetric encryption. I've created a test certificate using makecert and installed it into my personal localmachine store. In future I'll have to install this certificate on several servers, that's why I've created it with "-pe" flag, that is, with exportable private key. The c...
I have a certificate .p12 and .crt and I would like store the public key to print it and use the key with an iPhone application. I have seen the iPhone's documentation, but I can't do it... ...
I went through the process of setting this up once, but now I need to make it so we can develop on two Macs with the one account. all walkthroughs tell me to create a signing request or something on the new Mac through keychain access, which generates some private and public keys BS, and then it says to go to the developer portal and "a...
Hi, I have to read a private key, and this key is on pvk format. I use X509Certificate2 class, but i this class i have only public key access. How can i get a private key from pvk file? thanks Luiz Costa ...
So here's the deal: there is a proxy service which I access by appending a string to the domain. So for example, to access foo.com through the bar proxy, I go to foo.com.bar.com. I'm then directed to a web-based authentication form which offers me the chance to choose a domain, and then authenticate by certificate or by password. Afte...
I want to make a registration page for clients, that would only contain a button register and unregister. When the user would click on any of these 2 button he would should be prompted to select a client certificate from his computer. I would also like to extract the email address from the selected certificate. Is there any way of decla...
The X509Certificate2Collection.Import method allows to retrieve all certificates from an executable file or from an MSI package. That's fine. Now I want to validate the certificates. The X509Certificate.Verify method validates a certificate against the current time (the Reflector confirms: it uses DateTime.Now). So my first question i...
Hi, I recently created a Certificate Signing Request(CSR) and submitted. But it was rejected stating "CSR has a PKCS9 extension profile", does a CSR generated using OPEN SSL via XCA contain any profile information? Isn't CSR a very generic request? Thanks in advance. ...
Hi, I am required to install two security certifcates on user's PC's to allow them to connect to a certain Australian Government website to perform searchs. I can perform this manually (via Certifcate Import Wizard) when the user has logged into the machine, however when a different user logs in, the certifcates need to be re-installed...
I have created a certificate using the following SSL command: makecert -r -pe -n "CN=www.yourserver.com" -b 01/01/2000 -e 01/01/2036 -eku 1.3.6.1.5.5.7.3.1 -ss my -sr localMachine -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy 12 I assigned it to a web site on IIS, but when I try to hit the url of the web site I ...
Hi there, my goal is to secure the communication between MSMQ Queue Managers – I don’t want unknown clients sending messages to my MSMQ server. I have spent many hours now trying to get Transport security working for the net.msmq binding in WCF, where MSMQ is in Workgroup mode and the client and server do not have Active Directory… so ...
I am developing a WCF service on my local computer using Visual Studios built in ASP.NET development sever and I'm having issues creating and using temporary Certificates. I have created a cert call TempCA and added it to the Trusted Root Certificate folder and I have created another called SignedByCA which has been added to the persona...
how to access certificates list from client pc using applet ...