Hi Jeff
Error while trying to get the SSL client certificate:
java.security.UnrecoverableKeyException: Could not decrypt key: Could not
decode key from BER. (Invalid encoding: expected tag not there. ).
I had the same yesterday. While searching for a solution I came first
along your post
25, 2013 6:25 PM
To: cf-talk
Subject: Re: issue with cfhttp and client certificates
it should be noted that the minimum requirement for certs now is 2048bit,
it is not even possible to generate a cert with less than this with most
CSA's, so perhaps this is the issue, maybe 1024 is not even
-Dsun.security.ssl.allowUnsafeRenegotiation=true
)
-Original Message-
From: Russ Michaels [mailto:r...@michaels.me.uk]
Sent: Thursday, July 25, 2013 6:25 PM
To: cf-talk
Subject: Re: issue with cfhttp and client certificates
it should be noted that the minimum requirement for certs
?
-Mark
(I'm thinking of this arg -Dsun.security.ssl.allowUnsafeRenegotiation=true
)
-Original Message-
From: Russ Michaels [mailto:r...@michaels.me.uk]
Sent: Thursday, July 25, 2013 6:25 PM
To: cf-talk
Subject: Re: issue with cfhttp and client certificates
it should be noted
Jeff,
What JVM version are you using on CF9 and what do the args look like?
Sometimes it's a matter of the handshake and levels of TLS/SSL - the error
may be not specific enough to tell. You can enable logging to get a grip on
it though. That would tell you more.
-Mark
-Original
with cfhttp and client certificates
Jeff,
What JVM version are you using on CF9 and what do the args look like?
Sometimes it's a matter of the handshake and levels of TLS/SSL - the
error
may be not specific enough to tell. You can enable logging to get a grip
on
it though. That would tell
them.
Not sure I have anything to add.
-Mark
-Original Message-
From: Jeff Garza [mailto:j...@garzasixpack.com]
Sent: Thursday, July 25, 2013 3:45 PM
To: cf-talk
Subject: RE: issue with cfhttp and client certificates
Mark,
On the CF9 Server we're at Java version 1.6.0_17
you don;t by any chance have a blank password/no password on the pfx file
do you ?
On Thu, Jul 25, 2013 at 9:24 PM, Mark A Kruger mkru...@cfwebtools.comwrote:
Jeff,
What JVM version are you using on CF9 and what do the args look like?
Sometimes it's a matter of the handshake and levels of
of Java and/or Apache handles client certs... I guess I'm off to
Adobe support to see what they have to say about it.
--
Jeff
-Original Message-
From: Russ Michaels [mailto:r...@michaels.me.uk]
Sent: Thursday, July 25, 2013 2:34 PM
To: cf-talk
Subject: Re: issue with cfhttp and client
: issue with cfhttp and client certificates
Jeff,
What JVM version are you using on CF9 and what do the args look like?
Sometimes it's a matter of the handshake and levels of TLS/SSL - the
error
may be not specific enough to tell. You can enable logging to get a grip
on
it though. That would
would be able to do it, but the new one can't.
--Jeff
Original Message
From: Mark A Kruger mkru...@cfwebtools.com
Sent: Thursday, July 25, 2013 1:25 PM
To: cf-talk cf-talk@houseoffusion.com
Subject: RE: issue with cfhttp and client certificates
Jeff,
What JVM version are you
Subject: Re: issue with cfhttp and client certificates
Long shot, but what is the key length on the encryption? Could it be an
issue with the encryption capabilities currently set on the new JVM for
CF10?
Explanation: http://www.petefreitag.com/item/803.cfm
On Jul 25, 2013, at 4:44 PM
@houseoffusion.com
Subject: Re: issue with cfhttp and client certificates
Long shot, but what is the key length on the encryption? Could it be an
issue with the encryption capabilities currently set on the new JVM for
CF10?
Explanation: http://www.petefreitag.com/item/803.cfm
On Jul 25
13 matches
Mail list logo
