>> The CFHTTP command is actually to a file on the server itself >> (it is a file which generates a wddx packet as a pseudo 'web >> service'). >> >> Because it is now into production, its not easy for me to >> install Wireshark, and the problem doesn't occur on our test >> servers - yet as far as we can tell they have been set up >> with all the same certificates in keystore/trustStore etc... > >If you're using CFHTTP to talk to your own server, you could conceivably >configure the web server to allow HTTP requests from the same server instead >of requiring HTTPS. >
Yes - that's what we've done as a workaround, however we also have other servers connect to the 'web service' and we would prefer them to require SSL connections. Can't understand why it works OK on our test boxes, but not on production. Now thinking that it may be some IIS/Windows security setting... we uncovered one already, in that the servers had been set to require FIPS compliant security (TLS only effectively). That's now been disabled, but I'm wondering if it could be something like that... ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 The most significant release in over 10 years. Upgrade & see new features. http://www.adobe.com/products/coldfusion?sdid=RVJR Archive: http://www.houseoffusion.com/groups/CF-Server/message.cfm/messageid:6306 Subscription: http://www.houseoffusion.com/groups/CF-Server/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.10
