FAQ Database Discussion Community


How to secure a controller on WebAPI for use by only the local machine

c#,security,asp.net-web-api,certificate
I have an ASP.NET MVC website that makes use of WebAPI, SignalR. I wish for my server (the same server that hosts the website) to make HTTP requests to a WebAPI controller - I wish to do this so that I can hook into my website's SignalR functionality. I want...

How to verify server hostname

delphi,ssl,openssl,certificate,indy
I'm using Indy TIdHTTP (shipped with XE2) and the OpenSSL library DLLs V1.0.1m to verify a certificate when connecting over HTTPS. I have implemented an event handler for the OnVerifyPeer event of the TIdSSLIOHandlerSocketOpenSSL component. function TForm1.IdSSLIOHandlerSocketOpenSSL1VerifyPeer(Certificate: TIdX509; AOk: Boolean; ADepth, AError: Integer): Boolean; begin (...) end; According to RFC...

About .p12 certificate and how to extract keys from it

certificate,x509certificate
What is the difference between a certificate in a .cer file and one in a .p12 file? Are they just in different formats? How do I extract the private key and public key from the .p12 file? Can this be done using Java keytool? Thanks in advance....

How to get a trusted ssl certificate

ssl,nginx,certificate,trusted
I have successfully changed my nginx.conf to use only https://, but i get a warning in the browser because the SSL certificate is not trusted. What steps do i have to do to get a trusted certificate and no warnings and is this for free or do i have to...

Spring Security SAML IdP Metadata Certificate and Signature

spring,certificate,metadata,saml,spring-saml
I have looked at many questions including http://stackoverflow.com/a/25384924/1317559. I have the IdP metadata and certificate, but can't seem to get Spring so see it. Added the certificate to the keystore: keytool -importcert -alias adfssigning -keystore samlKeystore.jks -file certificate.crt In the metadata there are multiple certificates (2 different ones) and a...

How to create a CA with openssl *with minimal power*

security,ssl,openssl,certificate,pki
There are already answers about generating self signed certificate with openssl like this. However, what I want is a certificate that can do nothing but authenticate and encrypt the traffic to predefined websites. A certificate generated by the following command openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days...

How to sign a certificate request using openssl?

openssl,certificate,signing,pki
For testing, I'm trying to do these 3 steps: generate a CA certificate for "My Own CA Company" generate a certificate request for another entity "My Customer" sign the request using the CA certificate I'm failing at the last step (see below). I think my problem is that I have...

same alias different key OK between keystore and cacerts? Or, how to export/import key between keystore/cacerts?

java,certificate,keystore
On Linux Centos system with java 1.7, is it OK to use a key with alias xyz123 in keystore.jks and a different key with the same alias in cacerts.jks? Or, will something break? I deleted key with alias 'xyz123' (because it was 1024 bits) in keystore.jks file, then created a...

Validate certificate password using X509Certificate2

.net,exception-handling,certificate,x509certificate2
I want to validate a certificate password. At this moment I have code based on handling CryptographicException and checking an exception message. But this approach is dependent on English culture info. public bool VerifyPassword(byte[] fileContent, string password) { try { var certificate = new X509Certificate2(fileContent, password); } catch (CryptographicException ex)...

Self-signed Certificate and Client Keystore for SSL Authentication

java,ssl,certificate,keystore,keytool
I need to create and install a self-signed certificate on the server (an XML hardware appliance) to do SSL authentication of a Java client/application which, through its interface configuration, can set keystores, i.e. .jks. I only need this setup for testing purposes and not production, for obvious reasons. Here's how...

How to use certificate authentication for custom sockets TCP protocol?

c#,authentication,networking,certificate
I know that WCF has certificate authentication. How can I do the same thing for my custom sockets protocol? What classes should I use to verify certificates? What data should I transfer between parties? What are the required steps?

Code signing with signtool fails due to private key filter

windows,certificate,code-signing,privatekey,signtool
While trying to sign some installer created by the company I am working for I encountered an error, which I have not been able to solve. I am using the same certificate which has been used on another machine (Win7) successfully in the same way for signing quasi the same...

Corporate Java Webstart Distribution: use site-wide accepted certificate to sign a code-signing certificate

java,security,certificate,java-web-start,keytool
We are at a big organization with a several applications that are developed for internal and external use. One of those application is distributed as Java Webstart application and after a lot of trial and error we now have proper signing and packaging in place. The only problem: we use...

Push Notifications for Apple Watch

push-notification,certificate,apple-watch,apn
From what I've understood (which could be completly wrong and therefore this post will make no sense), I need to create separate APP Id's in my developer portal for my Watch app/extension. I did that, and I now have 3 app ID's and their complete related set of provisioning profiles...

Sign certificate in PKCS#11

openssl,certificate,sign,csr,pkcs#11
To sign certificate in OpenSSL I use X509_sign() function by feeding it with a request (as X509_REQ*), a signing key and a digest. Now I have my signing key stored in HSM, so I can't extract it to sign the certificate. Unfortunately PKCS#11 does not provide an equivalent to X509_sign()....

Duplicate identity after importing single certificate in OSX 10.10.3

osx,import,certificate
The OS seems to be incorrectly listing multiple identities, even though only one was installed. Here are my keychains (security list-keychains) "/Users/mateuscb/Library/Keychains/login.keychain" "/Library/Keychains/System.keychain" I list identities, and it comes back with zero identies. I then import it via the following command line: security import "~/mycert.p12" -k "/Users/mateuscb/Library/Keychains/login.keychain" -t cert -f...

How SignedXml.CheckSignature verify the certificate

windows,ssl,certificate
Here I have a question about the principle of SignedXml.CheckSignature. As we know, if we call the function with verifySignatureOnly = false, it can verify the certificate. [ComVisibleAttribute(false)] public bool CheckSignature( X509Certificate2 certificate, bool verifySignatureOnly ) But how can it verify? According to my understanding, certificate should be a public...

How can I sign my Windows Store app from Window Store certificate?

visual-studio-2013,windows-store-apps,certificate,sign
I have just bought my developer account from the Windows Store, and I would like to sign my app before uploading. When I go inside the packaging and then I click on the choose certificate button, I see following options: Pick from certificate store Select from file Create test certificate....

Is it possible for a server to see whether a HTTPS connection is monitored by Fiddler?

https,certificate,server,fiddler
I'd like to know if it's possible for web services to detect HTTPS connections with "faked" root certificates created by Fiddler4 (Web debugging proxy) to prevent reverse engineering. Is there any method to check whether the encryption is done with the original certificate or with one made by Fiddler?...

ClickOnce VSTO solution signed with mage.exe - certificate not trusted error

deployment,certificate,vsto,clickonce,mage
I'm trying to deploy a VSTO solution, which are 2 addins for Word and for Outlook, using ClickOnce. Due to our deployment infrastructure/practices, I cannot publish it using Visual Studio, it is instead built on a build server and deployed via a deployment server. For local development, a self-signed certificate...

Unable to Resolve PKIX Path Building Failed

https,certificate,mobilefirst,mobilefirst-adapters
I try to connect to https web service using below code. adapter.xml: <connectivity> <connectionPolicy xsi:type="http:HTTPConnectionPolicyType"> <protocol>https</protocol> <domain>somewhere.com</domain> <port>443</port> <connectionTimeoutInMilliseconds>30000</connectionTimeoutInMilliseconds> <socketTimeoutInMilliseconds>30000</socketTimeoutInMilliseconds> <maxConcurrentConnectionsPerNode>50</maxConcurrentConnectionsPerNode>...

Read Remote Machine Certificate

c#,certificate,x509certificate2
We can use the X509store to load the store and find the certificates in local machine but how to do the same for a certificate sitting on remote server? I know we can configure a network account to have permissions on the certificate in remote machine but how to use...

What certificates does 'curl' use by default?

curl,certificate
What certificates does 'curl' use by default? Example: curl -I -L https://cruises.webjet.com.au fails on Ubuntu 15.04 with curl: (60) SSL certificate problem: unable to get local issuer certificate But when I add the root certificate (see https://www.ssllabs.com/ssltest/analyze.html?d=cruises.webjet.com.au&latest) and run curl -I -L --cacert downlaodedCert.pem https://cruises.webjet.com.au everything is fine. So I...

Accidentally revoked an iOS certificate?

ios,certificate,app-store
I just got an email from Apple that states that I revoked an certificate yesterday: Certificate: XYZ Development Any provisioning profiles that include this certificate are no longer valid and must be regenerated for future use. I didn't revoked it or at least I didn't do it on purpose. However...

How to disable DNS Identity check on server

c#,wcf,ssl,dns,certificate
I have self-hosted WCF service and several thousand client installations. New server certificate has different DNS name (*.mydomain.com instead mydomain.com), that’s the reason DNS Identity has stopped working. Is there any way to cancel certificate validation by changing ONLY server side code/confg? Client var binding = new NetTcpBinding { Security...

Using multiple CA certificates for Apache SSL

apache,ssl,https,certificate,ca
I have two virtual hosts, and use two certificates. While not indicated by the following httpd.conf file, I am using *.example.com as well as *.sites.example.com and thus need to the two certificates. When accessing https://bla.sites.example.com/, the browser displays the following warning: bla.sites.example.com uses an invalid security certificate. The certificate is...

Does Openshift allow self-signed certificates?

certificate,openshift,cloudflare,self-signed
Say you implement an application on Openshift and put it behind Cloudflare. Since Cloudflare offers universal certificates and allows self-signed certificate, can I use self-signed certificate on OpenShift for my application?...

Calling a REST web service over SSL

c#,web-services,rest,ssl,certificate
I'm struggling to connect to a REST web service that's working only over HTTPS / SSL from my .NET application. I received the certificate and private key to use as two separate files - a certificate.pem file which contains the certificate, and the webservice.key file which contains the private key....

Check certificate revocation status with Java

java,certificate,x509certificate,certificate-revocation
Is it possible to implement revocation checking on a digital certificate (a *.cer file) with a Java program, without any connection to the Internet by the program? I can download the CRL from a CA's web site and put it on the server where the program is running. How does...

How to force Apache 2.2 to send the full certificate chain?

apache,ssl,certificate,reverse-proxy,mod-ssl
We are using Apache 2.2.25 with mod_ssl in the reverse proxy mode using mod_proxy. It has a server certificate we use for testing purposes, issued by GoDaddy. There are 3 certificates in the chain, server cert -> GoDaddy intermediate CA -> GoDaddy Root CA. The intermediate CA (Go Daddy Secure...

WPF debug Certificate cannot access private key

c#,wpf,visual-studio,security,certificate
I encounter a little problem with a WPF application. I have a certificate in my store that contains a private key, private key that I'm using to sign XML for a webRequest. This is coded in a different assembly than my WPF application. When I launch my tests in an...

Prime numbers as public key - clarification?

security,certificate,primes,prime-factoring
I've read here that : If you’ve watched a security certificate being generated on your computer ..., here is exactly what happens – it produces two large numbers , checks that they are both prime and multiplies them together. This gives you your “public key”, which you can share freely...

How useful is having Spring Certification [closed]

spring,certificate
I have been working in Spring and now I am planning to get Certified. Just wanted to check with all you experts if it would help as cost of the Certification is really high ? ...

How get X509 certificate's full cert chain programatically?

certificate,certificate-authority,java,validation
Imagine I have p12 container of private key and public certificate. When I export p12 public cert to separate .cer file with Java keytool I may click to .cer file and see full cert chain. How may I get that full path programatically? I made little investigation. I used keytool's...

Puppet: Server hostname did not match server certificate

certificate,puppet,agent
I installed Puppet Enterprise on two virtual machines (one master and one node). When I try to run my agent manually with puppet agent -t i get the error Server hostname '192.168....' did not match server certificate; expected one of host-192-168-.....localdomain. If i run this by adding --server host-192-168.....localdomain it...

MaxCDN - shared ssl - invalid certificate?

ssl,resources,certificate
one problem is really bugging me. I have a webshop with global customer scope, so I am using the known service "maxcdn.com" with a "pull-zone" to share my images, scripts and similar resources via maxcdn. Maxcdn gives me a subdomain with that I can access my resources and if I...

Certificates in PHP. Two way authentication ssl. Apache

php,apache,authentication,ssl,certificate
Context: production server with SSL installed. Running apache server. PHP. Problem: for an specific url like (for example: www.domain.com/whatever/edit/*) I want to ask users to use their certificate in order to authenticate them for an specific task. I have read that this way of authentication is called two-way authentication SSL....

How to validate server's ssl certificate in python?

python,ssl,certificate,verify
I have configured my server to serve only https creating a self-signed certificate. I have a client that I has to validate the server's certificate and after that will download a file from the server. How do I implement the validation in client? Is there any code example? My question...

Cannot establish SSL connection with Composer with PHP 5.6.3

php,ssl,certificate,composer-php
After cloning a repository on Ubuntu 14.04 with PHP 5.6.3 I am unable to run php composer.phar selfupdate neither php composer.phar update. I get this message: [Composer\Downloader\TransportException] The "https://getcomposer.org/version" file could not be downloaded: SSL ope ration failed with code 1. OpenSSL Error messages: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Failed to...

Unstrusted App Developer alert customisation

ios,certificate,alert,profile
Can I somehow edit text in quotes? So it would look like this: Do you trust the developer "My Company Name" to run apps on your iPhone? Without this "iPhone Developer: " or "iPhone Distribution: " parts?...

Is checking one randomly chosen digital signature is enough for verifying multiple signed file?

java,certificate,x509certificate,digital-signature,bouncycastle
Imagine, I have multiple detached signatures of some binary file and they stored in different .sig files. When somebody modifies file, all signatures will become invalid. For xml an enveloped signature is widely used. Cheking it is more difficult - one have to extract last ds:Signature element, check signature, remove...

Setting a client certificate as a request property in a Java HTTP conneciton?

java,url,https,certificate
I have a Java application that connects to another Java app through a socket with SSL, so my client JVM already has the -Djavax.net.ssl.keyStore and -Djavax.net.ssl.trustStore properties set. This application needs to make some HTTP requests to a web server that requires client authentication. I can open the connection by...

Creating and Exporting Certificate for Remote Desktop Connection Manager v2.7

certificate,remote-desktop
Can anyone help me create a certificate to use with the new version of Remote Desktop Connection Manager v2.7? I see the new version removed the "Store as plain text" option, but added using a certificate to the list. I was wondering if anyone knew how to create a certificate...

java.lang.SecurtiyException at unsigned jar's

java,jar,certificate
I'm facing a SecurityException at runtime: java.lang.SecurityException: class "util.OpenNItoDTW"'s signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:952) where util.OpenNItoDTW is my own class wich using a 3rd party jar. According to this the jar's have to be signed using the same certificate....

iOS Enterprise in house app distribution error

ios,certificate,profile
We are using xcode 6.2 beta 4 and distributing ipa with testflight without any issue. But when distribute the ipa to an OTA link for enterprise in-house distribution, the app can't be installed. The error message captured in the console log is "attempt to install an invalid profile", "Failed to...

get Subject Key Identifier of certificate with openssl commands [closed]

linux,mono,openssl,certificate
i want to get get Subject Key Identifier of my certificate using openssl and also every x509 extensions property of my certificate but i didn't find any solution. please help if there is a way to do it. I need the OpenSSL commands to do it....

How to call default ServerCertificateValidationCallback inside customized validation?

c#,.net,ssl,certificate
I want to modify .Net's default ServerCertificateValidationCallback to validate as true some of my company's certificates, but keeping the default validation for other certificates. I can't seem to do this since the default ServerCertificateValidationCallback value is null. ServicePointManager.ServerCertificateValidationCallback = (sender, certificate, chain, sslPolicyErrors) => validCertificatesSerialNumbers.Contains(certificate.GetSerialNumberString()) || defaultlCallback.Invoke(sender, certificate, chain, sslPolicyErrors)...

Ruby on Windows XP: How to change directory of SSL certificates

ruby,ssl,directory,certificate
I installed Ruby 2.0.0 on Windows XP, and run this script: # testSSL.rb require 'open-uri' open('https://www.google.com') I get a "certificate verify failed" error on http.rb line 921. Testing further, it seems that Ruby looks for the SSL certificates files here: C:/Users/Justin/Projects/knap-build/var/knapsack/software/x86-windows/openssl/1.0.1l/ssl How can I tell Ruby to look for these...

Which certificate should I use to sign my Mac OS X application?

xcode,osx,certificate,release
We are developing a Mac OS X application that we are going to distribute outside the Mac App Store. We ended up having these certificates in the Mac Developers program: and when I go to select one for signing the application, I find this: Am I correct in that I...

Azure - Docker : Remote error : bad certificate :

azure,certificate,docker
I created VM using the following syntax docker-machine_linux-amd64 create \ -d azure \ --azure-subscription-id="" \ --azure-subscription-cert="mycert.pem" \ machine-name When i try to get info regarding the Docker that's hosted on Azure using the following syntax , i get bad certificate error, not sure what's wrong. I have been using the...

ACME - Acquire certificate for subdomains with SAN

node.js,security,ssl,certificate,ssl-certificate
I'm interested in the upcoming Automated Certificate Management Environment (ACME). I download the demos & tried it out with my main domain. I still have a question though: Using the regular certification process, I'm able to get a certificate with SAN so I can set it on my server (Node.js)...

Downloading website over HTTPS fails

java,ssl,https,certificate
Here is the example that doesn't work: public class Temp { public static void main(String[] args) throws Exception { new URL("https://float.software").openConnection().getInputStream(); } } Going to https://float.software/ in my browser works just fine. But java throws this exception: Exception in thread "main" javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to...

Apple development Certificate and development profile issues

ios,certificate,apple
I am trying to make an app development certificate and provision profile to test with our development team on developer.apple.com. At present, it doesnt allows me to create App development certificate. The option is greyed out this was 2 days back. Today, again i tried, then the option for iOS...

Safari doesn’t detect my extension certificate [MAC]

safari,certificate,safari-extension
I have registered for the Safari Development Program and have a valid Apple ID. I've followed all the steps given by Apple. I have the Safari Extension Certificate (the .cer file) but when I open Safari's Extension Builder, my certificate does not appear there. I need Reputation for upload image......

Package.appxmanifest: Identity-property and certificate (correlation?)

c#,windows-store-apps,certificate,windows-store
I'm confused. As with a lot of stuff with Microsoft development process regarding Windows Store Apps. I'm soon going to submit my app to the Windows Store but I'm uncertain about the following in my Package.appxmanifest file. <Identity Name="MyCompanyName.123456789" Publisher="CN=ABCABCAB-ABCA-ABCA-ABCA-ABCABCABCABC" Version="1.0.0.0"/> This is obviously an example and something similar is...

How do I register my own Root Certificate Authority in Swift?

ios,objective-c,swift,certificate
How do I add my own Root Certificate Authority (CA) file to a device's Root CA list in Swift? I am trying to convert the Objective-C code below into Swift, but I do not know how to write the dictionary correctly for this scenario. Swift: let rootCertPath = NSBundle.mainBundle().pathForResource("server", ofType:...

Difference between EV sign certificate and regular ones

certificate,ssl-certificate,x509certificate,x509certificate2
My company is deciding which type of certificate to choose: the EV certificate or the regular one. I would like to know the difference between them. I know that the EV ones put some kind of reputation to the application you sign, but I'm not sure about the difference. Two...

How to convert a .csr to .crt using openssl?

certificate,ssl-certificate,x509certificate
well i have tried the below openssl x509 -req -in <cert_name>.csr -signkey <key_name>.key -out output.crt but seems to throw an error 140735226307408:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:703:Expecting: CERTIFICATE REQUEST Any solutions?...

Downloaded iOS Distribution certificate not under 'My Certificates'

ios,xcode,certificate
I download an iOS Distribution certificate from my company, and store the .cer file in my Downloads folder. I double click on it, and the Keychain Access opens. On the left side, I see the categories My Certificates and Certificates. The certificate is added to the latter category. How can...

can't export ipa file : “ Your account already has a valid Certificate”

ios,certificate,apple-watch
I have an app that also has a Watchkit target. Everything runs fine on device & simulator (for the watch). I can compile & run, and Archive. But when I extract, I get an error saying that my account already has a valid iOS Distribution Certificate. I need to export...

Broken Adobe Air Installers, Do I Need a Certificate

flash,air,certificate,publishing,signing
This is a multi-part question, but all to resolve the same issue. I'm trying to publish a project I've been working on but get intermittent problems with .air files that are generated. I always get the following warning when publishing my project: "There was an error connecting to the timestamp...

ipad: app cannot be installed at this time

ios,cordova,certificate,phonegap-build
I am completely new to iOS app development process and I have issues with the installation on the actual device. Yesterday or the day before I made the first certificate and a provisioning profile which only contains the UUID of our development iPhone. I uploaded the certificate along with the...

Error while creating iOS Developer CSR for iOS

ios,openssl,certificate
I am trying to generate a certificate request for an iOS Developer certificate. I get the error below (Unknown option CN=...). I am able to generate the private key just fine, it is the next step - generating the cert request that is failing. openssl req -new -key privatekey.key -out...

How often are CRLs checked?

list,authentication,certificate,ca
Are Certificate Revocation Lists checked everytime a client receives a certificate? Or does it happen just the first time, and then again when the CRL is updated?

C# - is it possible to sign XML with csr file?

c#,certificate,csr
I need to sign an XML with the private key, and the IT admin gave me a CSR file. is it the right file type I need ? if not, what can I ask for ? a PFX file ? thanks...

How to load self-signed certificate into certificate store

openssl,certificate,windows-7-x64,crt
I want to load a self-signed certificate created by OpenSSL to the local windows cert storage. OpenSSL: 1.0.1l OS: Windows 7 N I created the certificate with the OpenSSL library and used the following commands: openssl genrsa -des3 -out mykey.key 2048 openssl req -new -key mykey.key -out mycert.crt Now i...

Exporting P12 certificate concerns

ios,xcode,osx,ssl,certificate
I am still very new to App Development and I have hired a programmer to help me upload an app he has created for me into the iOS app store. My programmer wants me to export my p12 certificate from my Apple mac to his computer as he told me...

SSL Connection with self-signed certificate error (C# Socket connect to Java Server Socket)

java,c#,certificate,server,self-signed
At first... This program is only just-4-fun and wont be published ever. It's only for testing Sockets, so don't care about the security of this connection. I coded a little messenger where you can type in a message in a textbox and it will be send to the server and...

Migrating from Eclipse to Android Studio, inconsistent certificates

android,eclipse,android-studio,certificate
I've been using Eclipse to develop an android application, and I recently migrated to Android Studio. The apk exported from Eclipse and the apk exported from Android Studio have inconsistent certificates, but are signed using the same keystore and alias. (I get [INSTALL_PARSE_FAILED_INCONSISTENT_CERTIFICATES] if I try to install one over...

Wrong SSL certificate is returned for an Azure website

azure,ssl,certificate
We have two websites in Azure under different subscriptions which use the same UCC SSL certificate. Everything had been good for a long time until a week or two ago we noticed that one of the sites does not really have our certificate (although it was configured in Azure successfully)....

Certificate chain valid in Chrome, not Firefox or Android

google-chrome,firefox,ssl,https,certificate
We had to update our certificate for our ecommerce website recently and ever since we've noticed weird behavior in Firefox and other browsers. About half the computers in the office, as well as my home computer complain that the certificate chain is not complete (Very odd it's not universal). I...

openshift m5 sample-app self-signed certificate errors

go,certificate,openshift-origin
I'm trying to follow the directions for the openshift 3 v0.3.3 sample-app on centos 6.6 as per https://github.com/openshift/origin/tree/v0.3.3 . When i run openshift ex policy add-user view anypassword:test-admin i get complaints from add_user.go:43 Get https://localhost:8443/osapi/v1beta1/policyBindings/master?namespace=default: x509: certificate signed by unknown authority I didn't know how to get around it so...

Wildcard SSL - Which to chose and what is the key differences?

ssl,https,certificate,ssl-certificate
I have been left in confusion for quite some time in deciding which CA should i approach to obtain a SSL certificate. Much comparison has been made from different CA but I do not see what is the key differences that sets each other apart except the price they offer....

Is it possible to use custom truststore with SOAPConnection?

java,ssl,soap,certificate,truststore
(This is with Java 7.) We are considering using javax.xml.soap.SOAPConnection and its associated stuff to do some relatively quick and dirty sending and receiving of SOAP messages. However, the server this will be connecting uses certificates whose trust anchors are not in the default Java 7 truststore. We do not...

Azure management certificate error in vagrant

azure,certificate,vagrant
I am trying to spin up a VM in Azure using Vagrant. Following this tutorial : http://blogs.msdn.com/b/tconte/archive/2014/06/19/building-your-ubuntu-php-development-box-on-azure-using-vagrant.aspx?CommentPosted=true#commentmessage But I got stuck in this line azure.mgmt_certificate = 'C:\Dev\management_cert.pfx' The error I got is following λ vagrant up --provider=azure C:/Users/hoss329549/.vagrant.d/gems/gems/azure-0.6.4/lib/azure/base_management/base_management_service.rb:48:in `rescue in initialize': Management certificate not valid....

Xamarin Studio on my Mac - No valid iPhone code signing keys found in keychain - Signing Identity: Missing private key

ios,xamarin,certificate,provisioning-profile,xamarin-studio
So I'm trying to run a project in Xamarin Studio on my device. I'm getting the error "No valid iOS code signing keys found in keychain." I generated a brand new iOS development certificate as seen here: I then downloaded the certificate and opened it to add it to keychain....

How can i get Certificate issuer information in python?

python,ssl,certificate
I want the 'issued to' information from certificate in python. I try to use the SSL and SSLSocket library but did not happen. ...

verifying digital signature in c#

c#,.net,certificate,digital-signature,x509certificate
I have a signed "DLL" file that I want to validate his digital signature in run time ("Before I'm loading it") I have the public key of the certificate embedded in my code, Is there a way to get the "message digest" from the digital signature? or another way to...

Saml2Assertion to XML is empty

c#,xml,soap,certificate,saml
I try to make an HttpWebRequest with a SOAP data, and in the SOAP header, I will have to add a SAML 2 Assertion, that contains a certificate from Windows Certificate Store. So I made my assertion this way : Saml2Assertion oSAMLAssertion = new Saml2Assertion(new Saml2NameIdentifier(oPSCertificate.Subject)); oSAMLAssertion.Id = new Saml2Id();...

MS Azure Resource Provider SDK - Authentication

php,authentication,azure,certificate
I'm trying to implement the MS Azure authentication described here: https://github.com/Azure/azure-resource-provider-sdk/tree/master/docs#authentication but the only thing stated there is: You are responsible for verifying the caller's certificate thumbprint. Only accept calls from certificates that have the correct public key. How to make it? Preferably in PHP. Thanks in advance....

Migrate ClickOnce certificate from Sha1 to SHA256 and run on .NET 4.0 client machines

msbuild,certificate,clickonce,cruisecontrol.net,signing
After discovering the signing issue with .NET 4.5 vs .NET 4.0 when upgrading from an SHA1 to an SHA256 signed certificated, I decided to re-implement our ClickOnce build process to follow a more standard approach so I could make use of VS2013 Update 3. However it didn't seem to have...

Create self signed certificate with TLS

ssl,certificate,self-signed
Environment: Windows Server 2003 IE 6/7 IIS 6 ASP.NET 3.5 Framework application Self Signed Certificate I have created self signed SSL certificate using IIS resource kit and have configured the same in IIS 6.0. Web App works as intended. Now the client wants me to use TLS instead of SSL....

Certificates being renewed yearly - how to reliably find them in the cert store?

certificate,x509certificate
I've been tasked to add security by means of certificates to an external web service we call from our ASP.NET 4.0 Webforms application. I've been able to play around with the certificate and get the code to work properly, but there are still a lot of questions unanswered when it...