certificate

问题 In order to update the certificate that I use for SSL for my server I have a code that does the import\export and validation that I need. It works well, but In order for the changes to take effect I have to restart the tomcat. I wish to avoid the restart, and update it without using external tools (keytool for example). I looked up for some similar questions, and found a solution - restarting the 443 connector. I'm able to do so, and the connector is stopping and starting, but the certificate

问题 currently i'm struggling with my current project. I was tasked to replace the use of Username/Password based Authentication/Connection to SQL Server (2014) and replace it with a Certificate based Authentication/Connection one. So probably my questions are: Is this possible with SQL Server ? The idea is to no longer include the username/password combination to connect to the Database Instance from the Server. This then would be replaced by a certificate where, ideally would hold all the login

问题 The bounty expires in 13 hours . Answers to this question are eligible for a +50 reputation bounty. moDev wants to draw more attention to this question. I'm trying to verify signed XML(signature) with certificate but it always returns false. Please advice Signed XML <?xml version="1.0" encoding="utf-16"?><LicenseEntity xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xsi:type="MyLicense"><AppName>QMS</AppName><ClientName>SBI</ClientName><UID

问题 I'm automating some API calls in Javascript and a few days ago this error started appearing out of nowhere. base.js:383 1) Test API call base.js:266 Fourth test: FetchError: request to https://api.qa.xx.xxxx.com:443/mobile/v2/subscribers failed, reason: self signed certificate in certificate chain at ClientRequest.<anonymous> (node_modules/node-fetch/lib/index.js:1393:11) at TLSSocket.socketErrorListener (_http_client.js:387:9) at emitErrorNT (internal/streams/destroy.js:64:8) at

问题 I am building an app that requires mutual authentication. So I will enable my users to upload a bunch of client certs and when they make calls, they can use either of them. I will match the client cert from the incoming request to see if it matches any of the ones already stored, and if it does, the request will be honored. Now I'm trying to figure what's the best way to store these client certs. I was thinking I could store them in a DB, or some kind of file/blob store, or I've learned they

问题 I have the following code : public GetUserDataResponse GetUserDataFromService(X509Certificate2 certificate) { ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract> factory = new ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract>("NetTcpBinding_IMyApp4SITHSServiceContract_Certificate"); MyApp4SITHSService.IMyApp4SITHSServiceContract service; GetUserDataResponse response; factory.Credentials.ClientCertificate.Certificate = certificate; //factory.Credentials.UserName

问题 I have the following code : public GetUserDataResponse GetUserDataFromService(X509Certificate2 certificate) { ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract> factory = new ChannelFactory<MyApp4SITHSService.IMyApp4SITHSServiceContract>("NetTcpBinding_IMyApp4SITHSServiceContract_Certificate"); MyApp4SITHSService.IMyApp4SITHSServiceContract service; GetUserDataResponse response; factory.Credentials.ClientCertificate.Certificate = certificate; //factory.Credentials.UserName

问题 I created Wildcard certificate to support my site domain and subdomains. The new certificate works for my subdomains (e.g www.mydomain.com , sub.mydomain.com) But when I try to get to mydomain.com I get certificate warning: "the certificate is only valid for *.mydomain.com" Is it a problem with my configuration or just the Wildcard certificate doesn't support it? 回答1: For supporting both example.com and subdomain.example.com the certificate needs to include both *.example.com and example.com

问题 I have some odd requirements that I have to live with. I need to pass my crypto system a TBS certificate, they will sign it and send back a String of the signature which I need to incorporate into a certificate to make a signed certificate. Looking at com.ibm.security.x509.X509CertImpl and various BouncyCastle posts on SO, I can't find out how to do that. Questions: Is this possible ? If so, how ? 回答1: I'd refer to the source code for the BouncyCastle X509v3CertificateBuilder class (pkix jar)

问题 I have some odd requirements that I have to live with. I need to pass my crypto system a TBS certificate, they will sign it and send back a String of the signature which I need to incorporate into a certificate to make a signed certificate. Looking at com.ibm.security.x509.X509CertImpl and various BouncyCastle posts on SO, I can't find out how to do that. Questions: Is this possible ? If so, how ? 回答1: I'd refer to the source code for the BouncyCastle X509v3CertificateBuilder class (pkix jar)