certificate

Programmatically update certificates in tomcat 8 without server restart

扶醉桌前 提交于 2021-02-20 18:50:10
问题 In order to update the certificate that I use for SSL for my server I have a code that does the import\export and validation that I need. It works well, but In order for the changes to take effect I have to restart the tomcat. I wish to avoid the restart, and update it without using external tools (keytool for example). I looked up for some similar questions, and found a solution - restarting the 443 connector. I'm able to do so, and the connector is stopping and starting, but the certificate

Certificate-Based Authentication in SQL Server

允我心安 提交于 2021-02-20 05:21:06
问题 currently i'm struggling with my current project. I was tasked to replace the use of Username/Password based Authentication/Connection to SQL Server (2014) and replace it with a Certificate based Authentication/Connection one. So probably my questions are: Is this possible with SQL Server ? The idea is to no longer include the username/password combination to connect to the Database Instance from the Server. This then would be replaced by a certificate where, ideally would hold all the login

Unable to verify Signed XML with Certificate (.cer)

≯℡__Kan透↙ 提交于 2021-02-20 01:54:22
问题 The bounty expires in 13 hours . Answers to this question are eligible for a +50 reputation bounty. moDev wants to draw more attention to this question. I'm trying to verify signed XML(signature) with certificate but it always returns false. Please advice Signed XML <?xml version="1.0" encoding="utf-16"?><LicenseEntity xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xsi:type="MyLicense"><AppName>QMS</AppName><ClientName>SBI</ClientName><UID

Javascript: 'Self signed certificate' error during API call

允我心安 提交于 2021-02-19 06:24:41
问题 I'm automating some API calls in Javascript and a few days ago this error started appearing out of nowhere. base.js:383 1) Test API call base.js:266 Fourth test: FetchError: request to https://api.qa.xx.xxxx.com:443/mobile/v2/subscribers failed, reason: self signed certificate in certificate chain at ClientRequest.<anonymous> (node_modules/node-fetch/lib/index.js:1393:11) at TLSSocket.socketErrorListener (_http_client.js:387:9) at emitErrorNT (internal/streams/destroy.js:64:8) at

Best practice to store client certificates?

我是研究僧i 提交于 2021-02-19 03:21:45
问题 I am building an app that requires mutual authentication. So I will enable my users to upload a bunch of client certs and when they make calls, they can use either of them. I will match the client cert from the incoming request to see if it matches any of the ones already stored, and if it does, the request will be honored. Now I'm trying to figure what's the best way to store these client certs. I was thinking I could store them in a DB, or some kind of file/blob store, or I've learned they

A call to SSPI failed, see inner exception when running the call a second time?

五迷三道 提交于 2021-02-18 17:10:30
问题 I have the following code : public GetUserDataResponse GetUserDataFromService(X509Certificate2 certificate) { ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract> factory = new ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract>("NetTcpBinding_IMyApp4SITHSServiceContract_Certificate"); MyApp4SITHSService.IMyApp4SITHSServiceContract service; GetUserDataResponse response; factory.Credentials.ClientCertificate.Certificate = certificate; //factory.Credentials.UserName

A call to SSPI failed, see inner exception when running the call a second time?

ⅰ亾dé卋堺 提交于 2021-02-18 17:07:41
问题 I have the following code : public GetUserDataResponse GetUserDataFromService(X509Certificate2 certificate) { ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract> factory = new ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract>("NetTcpBinding_IMyApp4SITHSServiceContract_Certificate"); MyApp4SITHSService.IMyApp4SITHSServiceContract service; GetUserDataResponse response; factory.Credentials.ClientCertificate.Certificate = certificate; //factory.Credentials.UserName

Wildcard certificate not valid for mydomain.com

a 夏天 提交于 2021-02-17 03:50:44
问题 I created Wildcard certificate to support my site domain and subdomains. The new certificate works for my subdomains (e.g www.mydomain.com , sub.mydomain.com) But when I try to get to mydomain.com I get certificate warning: "the certificate is only valid for *.mydomain.com" Is it a problem with my configuration or just the Wildcard certificate doesn't support it? 回答1: For supporting both example.com and subdomain.example.com the certificate needs to include both *.example.com and example.com

Adding a signature to a certificate

我怕爱的太早我们不能终老 提交于 2021-02-11 15:54:03
问题 I have some odd requirements that I have to live with. I need to pass my crypto system a TBS certificate, they will sign it and send back a String of the signature which I need to incorporate into a certificate to make a signed certificate. Looking at com.ibm.security.x509.X509CertImpl and various BouncyCastle posts on SO, I can't find out how to do that. Questions: Is this possible ? If so, how ? 回答1: I'd refer to the source code for the BouncyCastle X509v3CertificateBuilder class (pkix jar)

Adding a signature to a certificate

帅比萌擦擦* 提交于 2021-02-11 15:52:51
问题 I have some odd requirements that I have to live with. I need to pass my crypto system a TBS certificate, they will sign it and send back a String of the signature which I need to incorporate into a certificate to make a signed certificate. Looking at com.ibm.security.x509.X509CertImpl and various BouncyCastle posts on SO, I can't find out how to do that. Questions: Is this possible ? If so, how ? 回答1: I'd refer to the source code for the BouncyCastle X509v3CertificateBuilder class (pkix jar)