Hi Jeff
Error while trying to get the SSL client certificate:
java.security.UnrecoverableKeyException: Could not decrypt key: Could not
decode key from BER. (Invalid encoding: expected tag not there. ).
I had the same yesterday. While searching for a solution I came first
along your post
25, 2013 6:25 PM
To: cf-talk
Subject: Re: issue with cfhttp and client certificates
it should be noted that the minimum requirement for certs now is 2048bit,
it is not even possible to generate a cert with less than this with most
CSA's, so perhaps this is the issue, maybe 1024 is not even
-Dsun.security.ssl.allowUnsafeRenegotiation=true
)
-Original Message-
From: Russ Michaels [mailto:r...@michaels.me.uk]
Sent: Thursday, July 25, 2013 6:25 PM
To: cf-talk
Subject: Re: issue with cfhttp and client certificates
it should be noted that the minimum requirement for certs
?
-Mark
(I'm thinking of this arg -Dsun.security.ssl.allowUnsafeRenegotiation=true
)
-Original Message-
From: Russ Michaels [mailto:r...@michaels.me.uk]
Sent: Thursday, July 25, 2013 6:25 PM
To: cf-talk
Subject: Re: issue with cfhttp and client certificates
it should be noted
Ok, so here's the issue. A process that was working just fine on CF9 is
now broken on CF10. We have a service that we call that requires us to
submit a client certificate to the server. In CF9, this worked just fine.
Use the clientcert and clientcertpass attributes of CFHTTP and you're
-
From: Jeff Garza [mailto:j...@garzasixpack.com]
Sent: Thursday, July 25, 2013 12:25 PM
To: cf-talk
Subject: issue with cfhttp and client certificates
Ok, so here's the issue. A process that was working just fine on CF9 is
now broken on CF10. We have a service that we call that requires us
you more.
-Mark
-Original Message-
From: Jeff Garza [mailto:j...@garzasixpack.com]
Sent: Thursday, July 25, 2013 12:25 PM
To: cf-talk
Subject: issue with cfhttp and client certificates
Ok, so here's the issue. A process that was working just fine on CF9 is
now broken
them.
Not sure I have anything to add.
-Mark
-Original Message-
From: Jeff Garza [mailto:j...@garzasixpack.com]
Sent: Thursday, July 25, 2013 3:45 PM
To: cf-talk
Subject: RE: issue with cfhttp and client certificates
Mark,
On the CF9 Server we're at Java version 1.6.0_17
with cfhttp and client certificates
Ok, so here's the issue. A process that was working just fine on CF9 is
now broken on CF10. We have a service that we call that requires us to
submit a client certificate to the server. In CF9, this worked just fine.
Use the clientcert and clientcertpass
: issue with cfhttp and client certificates
Ok, so here's the issue. A process that was working just fine on CF9
is now broken on CF10. We have a service that we call that requires
us to submit a client certificate to the server. In CF9, this worked just
fine.
Use the clientcert
: issue with cfhttp and client certificates
Jeff,
What JVM version are you using on CF9 and what do the args look like?
Sometimes it's a matter of the handshake and levels of TLS/SSL - the
error
may be not specific enough to tell. You can enable logging to get a grip
on
it though. That would
would be able to do it, but the new one can't.
--Jeff
Original Message
From: Mark A Kruger mkru...@cfwebtools.com
Sent: Thursday, July 25, 2013 1:25 PM
To: cf-talk cf-talk@houseoffusion.com
Subject: RE: issue with cfhttp and client certificates
Jeff,
What JVM version are you
Subject: Re: issue with cfhttp and client certificates
Long shot, but what is the key length on the encryption? Could it be an
issue with the encryption capabilities currently set on the new JVM for
CF10?
Explanation: http://www.petefreitag.com/item/803.cfm
On Jul 25, 2013, at 4:44 PM
@houseoffusion.com
Subject: Re: issue with cfhttp and client certificates
Long shot, but what is the key length on the encryption? Could it be an
issue with the encryption capabilities currently set on the new JVM for
CF10?
Explanation: http://www.petefreitag.com/item/803.cfm
On Jul 25
14 matches
Mail list logo
