Fraudulent digital certificates issued for high-value websites, iOS patch ?

Similar Messages

• Security certificate issue for Provider Hosted App (SP Online)

  Hi all,
  I am having a hard time with SP Online debugging a basic provider hosted app.
  Steps I have taken to create the app:
   created a new provider hosted app in Visual Studio 2013 and setting my SP Online debugging site (wich works perfectly for SP hosted apps).
  Chose Azure ACS option, although I do not have an Azure account
  When I deploy the app I get to the page on my debugging site where I must choose "Trust It", but when I do I get the message that the Connection is Unsecure/unsafe:
   How can I fix this? Do I need to create an Azure account for debugging purposes already? Or is there another way to solve the problem?

  Hi,
  I understand that you get Security certificate issue for Provider Hosted App (SP Online).
  Per my knowledge, you need to create an Azure account for debugging purposes.
  To create a SharePoint 2013 app for Office 365 and publish it to an Azure web site, you can refer to:
  http://blogs.msdn.com/b/kaevans/archive/2014/02/24/creating-a-sharepoint-2013-app-with-azure-web-sites.aspx
  Best Regards,
  Linda Li
  Linda Li
  TechNet Community Support

• "no access to the digital certificate" - Trying to export my first iOS app from Flash - Help please

  Hello
  I'm trying to export my first iOS app from flash to my desktop / on the device (Flash Pro CC, Iphone5)
  I followed the instructions on the adobe website to build an air app for iOS but on the last step it
  doesn't export the app.
  What I've done so far:
  - Apple developer account
  - creating the certificate + convert it to .p12
  - app ID / Name etc.
  - creating the provisioning profile from apple
  - iOS Air app in flash (Only Text "Hello world" with a tween)
  Now i have to load the certificates into Flash & enter a password (is it the password that
  i entered in the certificate or from my developer account/ Apple ID password? Both didn't work at the end)
  When i klick on publish in the last step than it loads a while but then i get the Error:
  "no access to the digital certificate"
  What is wrong? Can you help me please.

  Also, I should say, when I go into my phone on the computer and try to install an app, I get this message:
  Unable to start operation. Installer is already in use.
  Any ideas

• Count issue for Duplicate values

  Business Objects Infoview XI Web Intelligence Doc
  I am trying to find out users who have more than 1 monitor and display the count sperately on the report
  Result object:- (these are all fields of the monitor table)
  Serial number (monitor)
  CI ID (staff number)
  Instance ID (database unique ID)
  Instance ID is the database instance which is unique, CI ID is the staff number of the user
  I have created a variable, qualification as u201Cmeasureu201D The variable is constructed as followed
  =Count([CI ID]) Where([Instance ID] >"1")
  If I add the as a column to the CI ID column it gives me the number of instances for that file number which is what I want to see. I can then filter this to get show staff numbers that have 2 Monitors.  Even though I filter the operand type value(s) for list is greyed out
  The issue is I want a total count of the users that have 2 monitors but if I put the CI object on its own it gives me the total number of instances  in table rather than giving me  a total count of users that have 2 monitors
  How do I get the total count of users with more than 1 monitor?

  Please create two web intelligence variables:
  The first one with the name LocalCount and the following formula:
  =If (Count([[Instance ID]];Distinct) In ([[CI ID]]) >= 2) Then 1 Else 0
  The second one will be the total number of users having more that one monitor. Let's name this TotalUsersMultipleMonitors
  =sum([[LocalCount]]) In Report
  Display the second variable ( ie. TotalUsersMultipleMonitors ) in a standalone cell.
  Regards,
  Stratos

• Certificate issue for order response messages to Tradeplace

  hi,
  it appears that you may not even get that message out to us due to a cert issue. In fact it is not finding the cert probably (u201CNo trusted certificate found # nullu201D).
  IDoc  processed successfully through XI prod but there is error in processing through AS2 (BIS6).
  Error : javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found
  please advise

  Hi,
  Ask your BASIS team to check deployed AS2 certificate of your customer on PI Prodcutions server. If this is FIRST AS2 message you are sending to your partner means the AS2 certificate is not yet deployed on PI server. If it is not,The certificate may be expired and that needs renewal. So ask your AS2 partner to provide valid  Production AS2 cert. and ask BASIS to deploy the same.
  Once valid certificate deployed check your config once and try to resend the message from Adapter engine.
  Thanks
  Veera

• Fox Digital Download issues for iTunes

  I have Itunes version 11.0.4 and I am trying to import a Fox digital copy of a movie into Itunes, however every time I double click to import I receive the error message that it "requires Itunes version 7.6.2 or newer" and requests that I update Itunes. I see it states to go to iTunes directly and select the movie, but where/how to I enter the code for the free download?

  Never mind. I found the redeem link at the very bottom of the iTunes screen. Very tiny.

• Digital Certificate Issue

  Hi guys,
  How can we access the details of dc which installed in our system or in ie browser.
  I m using windows 2000.
  Please guide me.
  Thanks
  rakesh.

  You should use the Sun-MSCAPI bridge in JDK6. Windows has its own keystore and certificate-store and provides an API in its CAPI library. Sun has provided a Java bridge to that library that uses standard JCE classes and methods to access the keys and certificates. You will find details in the JDK6 JCA documentation.

• Purchasing a digital certificate for SCOM usage

  I am having problems with certificiates for SCOM (based on our infrastructure I believe not SCOM) and have asked some questions on it below -
  Digital certificate issues
  However I would like to break out one question and that is if I dont want to (read cant) use an internal CA at the moment where can I purchase two certificates for SCOM MS and gateway? When I look on the obvious sites such as Entrust and Thawte for instance
  it seems easy to order a web SSL certificate for instance but how would I go about ordering the type I need and what sort of information would I need to provide?
  Many thanks

  Hi,
  This can be a public CA such as VeriSign. Please check if the following post is helpful.
  http://social.technet.microsoft.com/Forums/systemcenter/en-US/7e8dde55-6e55-4109-8da5-85a93fa64ea0/using-a-thirdparty-for-ssl-cert-for-scom-gateway?forum=operationsmanagerdeployment
  Niki Han
  TechNet Community Support

• Certificate Issuer

  Hello everyone,
  I am attempting to setup an enterprise network with a HTTPS Inspection proxy. I have installed the certificate (that the proxy is using to issue other certificates) onto the Macs that are in the network (using keychain) and set the permisions to "always trust". From what I have been reading this is all that I would need to do (http://www.techrepublic.com/blog/mac/managing-ssl-certificate-authorities-on-os- x/314).
  However when I enable the policy on the proxy server to intercept the SSL connections I get the following issue in Safari: "This certificate has an invalid issuer" (see attachment).
  Does anyone have any ideas on how to fix this? or what I may have done wrong?
  Ashley

  I did two URL mappings similar as below.
  Regular Mapping
  ==============
  http://proxy.buyer.com
  https://origin.buyer.com (example)
  Reverse Mapping
  ==============
  https://origin.buyer.com
  http://proxy.buyer.com
  I have downloaded the CA root certificate from https://origin.buyer.com and installed it to Netscape under the alias name "proxy".
  However when I typed the URL http://proxy.buyer.com on my browser, it returned an error page to me and on the iPlanet error log, it said "The certificate issuer for this server is not recongnized by Netscape.......Netscape is refused to connect to this server".

• Certificate configuring for exchange 2013 and office 365 hybrid deployment

  Please advise on what digital certificate requirements for hybrid deployment and to configure it.

  Hi sphilip,
  If you want to deploy AD FS with Single Sign-On(SSO), we need use certificate to establish secure trust between on-premises Exchange 2013 and Office online.
  We can use and configure a trusted third-part CA within all on-premises Exchange 2013 Mailbox and Client Access servers to ensure secure mail transport, more details about
  Office 365 Hybrid Configuration Certificate Planning, for your reference:
  http://blogs.technet.com/b/neiljohn/archive/2011/08/25/office-365-hybrid-configuration-certificate-planning-adfs-exchange-web-services-owa-oa.aspx
  Best Regards,
  Allen Wang

• Memory Leak Issue for Adobe Access iOS API

  Hi,
  We are trying to develop an iOS app (with ARC enabled) using Adobe Acces API 4.0 and we have identified that the function [drmManager createDRMSession] has memory leak.
  DRMSESSION = [drmManager createDRMSession:METADATA playlist:PLAYLIST error:nil complete:^() {}];
  We are using:
  DRMSESSION  -> weak
  METADATA    ->strong  (as need to share within object)
  PLAYLIST       ->strong  (as need to share within object)
  After calling this function, the object is unable to dealloc and most of the leaking object related to networking (such as CFNetwork...)
  Is this a known issue for the Adobe Access iOS API or we are missing some key steps.
  Any suggestions is appreciated. Thanks in advance.

  ans0600, sorry about that, I read Hiroshi's forward too quickly.  I've done a little digging and have come up with two work-arounds:
  Create a file with ARC disabled to translate the returned object to be an autorelease
  declare the returned DRMSession as __unsafe_unretained and use CFRelease, as noted on stackexchange
  In the future we may change this method to return an autoreleased object to avoid this issue.  Let us know if you have any further questions!

• Checklist for Exchange Certificate issues

  Checklist for Exchange Certificate issues
  1. 
  Why certificate is important for Exchange and What are Certificates used for
  Exchange is now using certificates for more than just web, POP3, or IMAP. In addition to
  securing web services, it has also incorporated Transport Layer Security (TLS) for session based authentication and encryption.
  Certificates are used for several things on Exchange Server. Most customers also use certificates
  on more than one Exchange server. In general, the fewer certificates you have, the easier certificate management becomes.
  IIS (OWA, ECP, EWS, EAS, OA, Autodiscover, OAB, UM)
  POP/IMAP
  SMTP
   2. 
  Common symptoms for
  certificate issue
  Here we can see three different types of the certificate warning, mainly from the Outlook
  side.
  a.
  Certificate mismatch issue
  b.
  Certificate trust issue
  c.
  Certificate expiration issue
  3. 
  Checklists
  In this section, checklists will be provided according to the three different scenarios:
  Certificate Mismatch Issue
  [Analysis]:
  This issue mainly occurs because the URL of the web services Outlook tries
  to connect does not match the host name in the certificate.
  [Checklist]:
  Firstly make sure how many host name in your certificate the certificate. Run “Get-ExchangeCertificate | select certificatedomain”.
  Secondly, check the web services URLs which Outlook are trying to connect to. Run “Test Email AutoConfiguration”
  In this scenario, you need to check the host name for the following services:
  Autodiscover
  EWS
  OAB
  ECP
  UM
  If any of the urls above does not match the one in the certificate, refer to the following article to change
  it via EMS:
  http://support.microsoft.com/kb/940726
   1.
  Do not forget to restart the IIS service after applying the changes above.
   2. Make sure a valid certificate is enabled on the IIS service.
  Certificate Trust Issue
  [Analysis]:
  For the self-signed and PKI-based (Enterprise)
  certificates, they are not automatically trusted by the client computer or mobile device, you must make sure that you import the certificate into the trusted root certificate store on client computers and devices. On the other hand, Third-party or commercial
  certificates do not have this problem. Most commercial CA certificates are already trusted because the certificate already resides in the trusted root certificate store. Because the issuer is trusted, the certificate is also trusted. Using third-party certificates
  greatly simplifies deployment.
  [Checklist]:
  If it’s an Enterprise CA certificate, manually install the root certificate to the “Trusted Root Certification Authorities” folder:
  If it is a 3^rd-party certificate, first remove and reinstall the certificate. Check whether the Windows Certificate Store on the local
  client is corrupted. If it still does not work, please contact the third-party CA support to verify the certificate.
  Certificate Expiration Issue
  [Checklist]:
  When a certificate is about to expired, we just need to renew it by referring the following article:
  Renew an Exchange Certificate
  http://technet.microsoft.com/en-us/library/ee332322(v=exchg.141).aspx
  To avoid any conflictions, it’s recommended to remove the expired certificate from the certificate store.
  [How to set a reminder to alert the administrator when a certificate is about to expired]:
  It’s easy to fix the certificate expire issue. But it should be more important to set a reminder before the
  certificate expiration. Or there can be a large user impacts.
  Generally, the Event ID “^(24|25)$” will appear in Application log when a certificate is about to expire.
  If it’s not quite visible, we can refer to the following solution:
  http://blogs.technet.com/b/nexthop/archive/2011/11/18/certificate-expiration-alerting.aspx
  OWA certificate revoked issue
  [Analysis]:
  IE
  includes support for server certificate revocation which verifies that an issuing
  CA has not revoked a server certificate. This feature checks for CryptoAPI revocation when certificate extensions
  are present. If the URL for the revocation information is unresponsive, IE cancels the connection.
  [Solution or workaround]:
  1. Contact CA provider and check whether the questioned certificate is in the Revoked List.
  2. If not, check whether the certificate has a private key.
  3. Remove the old certificate and import the new one.
  Workaround:
  IE Internet Options -> Advanced tab -> Clear the "Check for server certificate revocation"
  checkbox.
  4. 
  More References
  Digital Certificates and SSL
  http://technet.microsoft.com/en-us/library/dd351044(v=exchg.150).aspx
  More on Exchange 2007 and certificates - with real world scenario
  http://blogs.technet.com/b/exchange/archive/2007/07/02/3403301.aspx

  (Reported previous post with link to SIS package to moderator)
  This is not the correct SIS package for the N73. The package shown is for S60 3.2 devices, but the N73 is not S60 3.2, I believe it is S60 3.0.
  Most features may work with this SIS, but if you experience strange problems, try using the S60 3.0 version.
  But there are no significant difference between 2.5.3 and 2.5.5 with regard to attachments. The only changes were with localization (languages).
  At this point, try 2.7.0 which is out now:
  http://businesssoftware.nokia.com/mail_for_exchange_downloads.php
  Make sure to pick the right phone on the drop down list. It does matter! There are 4 different packages. This list makes sure you get the right one.
  I have seen some issues with attachments not completing that seem to be carrier dependent. You can test this my using Wifi (if possible).
  Message Edited by m4e_team_k on 28-Sep-2008 12:25 AM

• How does one read Digital Certificate attributes/values?

  The plan:
  Distribute a document secured by "Certificate Security".  For those who have been granted the rights to print the document, need to be able to print the "User's Name" on the document - for traceability reasons.
  In before Acrobat XI (using Pro version), I was able do this with in a javascript  assigning "identity.name" and "identity.loginName" to arbitrary variable; then use addwatermarkfromtext function to display this data on each page.
  However with Acrobat XI, I see that identity.name and identity.loginName are Privileged and cannot be called from a page or document level script.  Furthermore addwatermarkfromtext is not supported in Reader (which the recipients are using). So my old tricks no longer work.
  I've over come the addwatermarkfromtext restriction inelegantly by using textboxes.
  The self-signed certificate I'm using allows for signing and execution of script; but not been successful in using the identity attributes - even with trying "app.trustedfunction... app.beginPriv() etc...
  In checking the API reference, see a possible work-around using the certificate properties - specially: certificate.subjectCN. The API reference shows this as a read-only, non-Privileged value!  Am at a loss on how to call/retrieve.  What I am hoping to do is: as the document is secured by Certificate, I want to read the Certificate's "common name" value of the person who opened the document and use this as my traceability token on printed documents.
  Would appreciate examples of JavaScript code to retrieve and use the Certificate.subjectCN of the user who has the document open.
  (or if I'm still barking up the wrong tree - direction to the right path).
  Many Thanks !

  If you just want to read the current state of the lines when one changes, you could configure non-buffered change detection (call DAQmxCfgInputBuffer with 0 samples per channel after you configure change detection timing but before you start your task).
  Use the change detection event and read just a single sample per callback.
  If the software can't keep up though, you wouldn't have a buffer of all of the previous transitions.  If this is something you need, you'll need to keep using the buffered change detection.  Either event could work, but not without caveats:
  1.  The Every N Samples event is generated when the requested number of samples are transferred off of the device to the host PC buffer.  It is difficult to control exactly when this transfer happens (though there are channel properties you can try setting--I can't experiment since I don't have the same hardware handy).  You're not getting the events currently because it is likely that the data is sitting in the device FIFO until the transfer is initiated.
  2.  The change detection event is generated from the hardware signal.  You have to read the data to get the data transfer to happen though, but until you read the data you don't know how many samples there will be (if the line is changing rapidly you might get several samples per event for example).
  For the record I find the buffering pretty awkward on USB devices when dealing with callbacks (e.g. if you are using EveryNSamples callback shouldn't the data transfer be initiated every time N samples are acquired?).  I haven't played with it in a while and it's possible the Data Transfer and Memory Channel Properties can be used to deal with the buffering issues.
  Best Regards,
  John Passiak

• Bank of America Digital Certificates for Bank of America Direct & iphone 3G

  I did a quick search and didn't see anything that i think i am looking for.
  I am trying to access The Bank of America Direct Web Page. To do this from my work computer, I am given a Digital Certificate, that i download to my computer. I am then able to access the website, (after imputing usernames and passwords of course)
  At work i use an IBM (LENOVO) ThinkPad.
  I know i can export the digital certificte to other computers so that i can access the webpage from home or another desktop if i need to.
  Does any know if it is possible to export this digital certificate to the Phone 3G, so that the webpage can be accessed from the safari browser?
  Thank you
  Joe

  Thanks, but i beleive the BofA Direct website is separate from the general BofA personal account site.

• Cisco Jabber for Windows Certificate Issues

  Hi,
  I have configured a Cisco Jabber with device security mode "Encrypted". Once I use this mode I am getting a error message in Cisco Jabber as:
  "The certificate enrollment for secure computer calling has not been activated. Contact your system administrator."
  The softphone feature is not working because of this.
  Do you have any fix for this issue?
  Thanks,
  VJ

  Hi Jonathan,
  I have one more issue with Cisco Jabber using authentication string. The authentication string works fine with the Jabber and softphone functionality is working.
  Now the problem is: if the single user has two Jabber clients, one installed on laptop and second on desktop, the authentication string window is presented to the jabber client which logs in first. For example is I login from my laptop the window pops up to enter the authentication string. But now when I open the Jabber on my desktop it doesn't give me option to enter the authentication string and the softphone doesn't work.
  Thanks,
  Vaijanath