command to install or 'present' the
client cert now...
Client key AND cert. See my reply 03-29 21:56.
> - Original Message -
> From: "David Patricola"
> To: openssl-users@openssl.org
> Sent: Wednesday, March
riginal Message -----
From: "David Patricola"
To: openssl-users@openssl.org
Sent: Wednesday, March 30, 2011 9:32:36 AM
Subject: RE: Truststore or Cacerts file?
Ok, I've modified my import as follows: E:\JRun4\jre\bin>keytool -importcert
-alias dca -file E:\Jrun4\jre\lib\security\ro
bout the command you quote - below - is
that you appear to be installing your 'user' cert (postgresql.crt) into the
CAcerts store. This would not make sense.
Lou Picciano
- Original Message -
From: "David Patricola"
To: "Tomas Gustavsson" , openssl-users@
cert (postgresql.crt) into the
CAcerts store. This would not make sense.
Lou Picciano
- Original Message -
From: "David Patricola"
To: "Tomas Gustavsson" , openssl-users@openssl.org
Sent: Wednesday, March 30, 2011 8:43:38 AM
Subject: RE: Truststore or Cacerts file
Do the other two stay in the same folder as root.crt, but only root.crt
actually gets installed in the cacerts file?
-Original Message-
From: Tomas Gustavsson [mailto:to...@primekey.se]
Sent: Wednesday, March 30, 2011 3:49 AM
To: openssl-users@openssl.org
Cc: David Patricola
Subject: Re
box as well. I need to install these
certificates on a client Java box's (actually running ColdFusion 8)
keystore. Out of postgresql.crt, root.crt and postresql.key, which files do
I store? And do they go into the default cacerts file or create a
truststore?
David Patricola | Senior
nd do they go into the default cacerts file or create a
truststore?
David Patricola | Senior Cold Fusion Developer | Web Applications & Services
| Jefferson Information Technologies
Thomas Jefferson Universtiy | Philadelphia, PA | 215.503.1715 (Office)
[mailto:loupicci...@comcast.net]
Sent: Tuesday, February 01, 2011 9:36 AM
To: David Patricola
Cc: openssl-users@openssl.org
Subject: Re: First time attempting PostgreSQL SSL
David,
My server pg_hba.conf file already has the following to connect to the
client:
hostsslall all
move on to certificates!
Let me know! Lou Picciano
- Original Message -
From: "David Patricola"
To: openssl-users@openssl.org
Sent: Monday, January 31, 2011 4:31:08 PM
Subject: FW: First time attempting PostgreSQL SSL
Whoops, I forgot to include root.crt in the Postgre /d
Whoops, I forgot to include root.crt in the Postgre /data directory. Now
that I fixed that, I am still getting the same connection error on the
client side.
-Original Message-
From: David Patricola [mailto:david.patric...@jefferson.edu]
Sent: Monday, January 31, 2011 4:10 PM
To
I found an excellent tutorial on this:
http://www.howtoforge.com/postgresql-ssl-certificates
I followed the instructions perfectly, and used my client computer's IP
address as the CA. Here's my setup so far:
On the server:
- In Postgre data/ I have the server.crt and server.key files
-
XP
(client). I know what to change in the PostgreSQL config but do not know if
PostgreSQL implicitly knows that a certificate exists, and what the client
box should have.
David Patricola | Senior Cold Fusion Developer | Web Applications & Services
| Jefferson Information Technologies
12 matches
Mail list logo