A question about the "Third-Party Root Certification Authorities" X509 store

Similar Messages

• A QUICK QUESTION ABOUT ANYCONNECT THIRD PARTY CA WITH OCSP RESPONDER.

  Hi guys,
  i have successfully implemented anyconnect with a third party ca server (EBJCA) and CRL for revocation checking.
  Now i want to implement OCSP instead of CRL.
  I followed this document:
  http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00809a3fa5.shtml
  In this document it is mentioned that :
  Configure OCSP
  Configure OCSP Responder Certificate
  The OCSP configuration can vary dependent upon the OCSP responder       vendor. Read the manual of the vendor for more information.
  Obtain a self-generated certificate from the OCSP             responder ?
  Follow the procedures mentioned previously and install a             certificate for the OSCP server.
  Note: Make sure that revocation-check is set to none.                 OCSP checks do not need to happen on the actual OCSP server.
  1- My question is how to generate a self signed certificate from OCSP ?
  2- If we are not able to get a self signed certificate from OCSP Responder, is there any other work arround ?
  3- last why we use certificate mapping rule for OCSP certificate mentioned in the DoD's document.
  feel free to share your views.

  > does the client (e.g. clients using CAPI/CAPI2) also check the "Third-Party Root Certification Authorities" X509 store or do the Certs in this logical store also reside (get copied to) the "Third-Party Root Certification Authorities"
  X509 store
  yes. Trusted Root CAs container is an aggregated container for all trusted root CAs (for natively trusted CAs and for Root Certification Program members).
  Vadims Podāns, aka PowerShell CryptoGuy
  My weblog: en-us.sysadmins.lv
  PowerShell PKI Module: pspki.codeplex.com
  PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
  Check out new: SSL Certificate Verifier
  Check out new:
  PowerShell File Checksum Integrity Verifier tool.

• Question about using third party jar files in Java Web Start Environment

  Hi everybody, I got a very strange problem and still can't figer out how to solve it. Can anyone help to overcome this problem?? Thanks in advance.
  Question: I wrote a simple java swing application to connect to Oracle database. I packed whole my classes and a third party jar file(classes12.jar) to a new jar file named "IRMASSvrMgntGUI.jar" and then use command 'jarsigner' to signed IRMASSvrMgntGUI.jar. There is no problem when I execute 'java -jar IRMASSvrMgntGUI.jar' in the command line. But when I execute this application via Web Start Environment, an "java.lang.NoClassDefFoundError: oracle/jdbc/driver/OracleDriver
  " error occured with the following detail log shown in Jave Web Start Console:
  =============================================================
  java.lang.NoClassDefFoundError: oracle/jdbc/driver/OracleDriver
       at DBConnection.getNewConnection(DBConnection.java:25)
       at IRMASSvrMgntGUI.actionPerformed(IRMASSvrMgntGUI.java:524)
       at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
       at javax.swing.AbstractButton$ForwardActionEvents.actionPerformed(Unknown Source)
       at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
       at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
       at javax.swing.AbstractButton.doClick(Unknown Source)
       at javax.swing.plaf.basic.BasicMenuItemUI.doClick(Unknown Source)
       at javax.swing.plaf.basic.BasicMenuItemUI$MouseInputHandler.mouseReleased(Unknown Source)
       at java.awt.Component.processMouseEvent(Unknown Source)
       at java.awt.Component.processEvent(Unknown Source)
       at java.awt.Container.processEvent(Unknown Source)
       at java.awt.Component.dispatchEventImpl(Unknown Source)
       at java.awt.Container.dispatchEventImpl(Unknown Source)
       at java.awt.Component.dispatchEvent(Unknown Source)
       at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
       at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
       at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
       at java.awt.Container.dispatchEventImpl(Unknown Source)
       at java.awt.Window.dispatchEventImpl(Unknown Source)
       at java.awt.Component.dispatchEvent(Unknown Source)
       at java.awt.EventQueue.dispatchEvent(Unknown Source)
       at java.awt.EventDispatchThread.pumpOneEventForHierarchy(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.run(Unknown Source)
  ==========================================================================
  contents of the manifest file I used to create this jar file are as follows
  ===================================
  Manifest-Version: 1.0
  Main-Class: IRMASSvrMgntGUI
  Class-Path: classes12.jar
  Created-By: 0.9a (itoh)
  ===================================
  and file structures in "IRMASSvrMgntGUI.jar" is
  ====================================
  META-INF/
  classes12.jar
  DBAuthenticateDialog.class
  DBConnection.class
  IRMASSvrMgntGUI.class
  ====================================

  If you directly include classes12.jar in IRMASSvrMgntGUI.jar, the classloader won't be able to find the classes inside classes12.jar. You should sign classes12.jar separately and include that in jnlp along with your application specific jar. When you're launching your app using "java -jar somefile.jar" then the classpath settings in manifest file are used, but that's not the case when you start using JWS since in this case the classpath is based only on the " <jar href=..." entries in jnlp.

• How are the third party apps for the iPhone?

  Being a long time Palm user, then moved to BlackBerry I watched the quality of third party apps really plummet due to a more restrictive development agreement.
  Now considering an iPhone, I'm curious about how healthy the 3rd party app community is for iPhone, something I miss from my Palm days. From what I've heard, the development for iPhone applications is even more restrictive than for BlackBerries.
  Anyone that wouldn't mind addressing one or all of these questions for me from their own experience, would be greatly appreciated.
  1) Do you use third party applications on your iPhone, or do you find the native Apple software to be sufficient?
  2) Are there alot of different choices for utilities, or do you find yourself pigeonholed to 1-2 programs.
  3) Would you say that the third party apps are "mature" that is stable, follow similar flow/integration with the phone and designed in an intuitive way?
  Again thanks for anyone that chooses to help me with this. I was really disappointed with the apps available for the Blackberry. At $15-$25 dollars each, I was usually let down by the quality and selection and overall experience.

  Snarg wrote:
  1) Do you use third party applications on your iPhone, or do you find the native Apple software to be sufficient?
  The native software is excellent and I also have apps to fill in for things not available as part of the out of the box iPhone.
  2) Are there alot of different choices for utilities, or do you find yourself pigeonholed to 1-2 programs.
  If you go to the app store and browse, you'll find lots of different utilities. In some cases, there are a dozen different options that do the same basic thing and in other cases there are a couple.
  3) Would you say that the third party apps are "mature" that is stable, follow similar flow/integration with the phone and designed in an intuitive way?
  Some apps are well done and others aren't. Since they are developed independently, there is variability. The apps I use most frequently seem pretty stable. It all depends on your needs.

• NoClassdefFoundError on the third-party jar's classes when building APK

  I am building a native extension for Android.
  For the android library, I create a android project and add several third-party jar files to build path.
  I extract a jar file from a android project and merge it and third-party jar files into a single jar file.
  I package ANE using a merged jar file and build a APK.
  When I install a APK and launch it, NoClassdefFoundError on the third-party class occurs.
  I use Flash Builder 4.6 and set sdk version to the Flex SDK 4.6.0 + AIR SDK 15.0.0.356.
  I decompile APK and check the classes.dex.
  Strangely a certain jar's classes are missing in the classes.dex.
  I tried googling and found a similar case.
  The following is the link :
  http://stackoverflow.com/questions/24777394/noclassdeffounderror-on-thirdparty-class-files -when-building-adobe-native-extens
  I try to follow the answer in this link.
  Did dx.jar in the AIR SDK really strip out some classes of third-party jar file??
  I inquired the java version of the third-party related with NoClassdefFoundError.
  Now I am waiting for the reply.
  Is anybody else know about this?

  The android-support-v4.jar is same.
  I check android-support-v4.jar's classes in ANE.
  But they are missing in APK after release build.
  I don't know why.
  I use Flash Builder 4.6 and Flex SDK 4.6.0 + AIR SDK 15.0.0.356.
  Is there anyone else know about this???

• A very important question about the HostSample-Help needed!

  Hi,
  I'm trying to build a plugin for EM 12c ( 12.1.0.2 ) which suppose to monitor jmx mbeans .
  I encountered during the README file which was packed with the EDK .
  1. In the section where I try to use Flash builder ( ver 4.6 - that's the only release I found .. ) I folowed the instructions if how to run the example ( HostSample/HostSystem ) . When I run the example ( I installed the sdk's of Flash and everything that was written there - no problem )
  in the web browser i got the login page , and put the parameters ( username, password ) as it said in the README - the same username/password as i log in to the EM console .Than I got an error saying " ... RPC fault string ..... Logging to management server ... URL:https.. host ( my host name ) : port ( my port number ) /em..."
  Does anyone has a clue about this ? What am i doing wrong or miss something ?
  It is very important and urgent to me . please help .

  To add a bit more detail. Before you run the application from FlashBuilder, open the same browser you will use to run/debug the application in FlashBuilder and install certificate.
  Firefox:
  . when the "This Connection is Untrusted" warning appears
  . expand the "I Understand the Risks" item
  . click the "Add Exception..." button
  . on the "Add Security Exception" dialog, ensure "Permanently store this exception" is checked
  . click "Confirm Security Exception" button
  IE:
  . when the "Certificate Error: Navigation Blocked" page appears, click "Continue to this website (not recommended)"
  . click on the "Certificate Error" icon in the browser address bar
  . in the "Untrusted Certificates" popup, click "View Certificates"
  . click on the "Certification Path" tab of the "Certificate" dialog
  . select the root certificate (certificate at the root of the tree)
  . click "View Certificate..." button
  . click "Install Certificate..." on the "Certificate" dialog that appears
  . click "Next" on the "Certificate Import Wizard"
  . select "Place all certificates in the following store" button and click "Browse..."
  . select "Trusted Root Certification Authorities" on the "Select Certificate Stores" dialog and click "OK"
  . click "Next" button, and then "Finish" button
  . click "Yes" on "Security Warning" dialog that appears
  The other alternative is to enable http access using "emctl secure unlock". This is not recommended for a production site.
  .

• What are the third party tools available for Encryption in Oracle database?

  Dear All,
  Can you please help me with the below question?
  What are the third party tools available for Encryption in Oracle database? Please let me know if you know their feedback and also licensing/cost information

  Why would you spend money to purchase a third-party tool that will be, almost by definition, less secure than the tools inside the product you already own and paid for?
  http://www.morganslibrary.org/reference/pkgs/dbms_crypto.html
  But were I to have any to recommend one I would not do so without knowing information you seem to consider unimportant such as:
  1. Operating system
  2. Database edition and version
  3. What type of data needs to be secured
  4. What level of security is required

• Who will do benefit enrollment? third party or In sap itself? who is the third party vendor?

  who will do benefit enrollment? third party or In sap itself? who is the third party vendor?

  Hi Rakesh,
  Who should handle benefit enrollement depends on client requirement.
  In SAP Benefit Administration module we do have enrollment function.
  Here is the document
  http://help.sap.com/saphelp_46c/helpdata/en/7e/8a5f51545711d1891c0000e8322f96/content.htm
  Client may chose to only store benefit related information and take help of other third party vendor and use interfaces to communicate it to SAP for payroll and master data maintenance.
  Aon Hewitt is one of the well known vendors. Might be more not sure of all names.
  Hope it answers your question.
  Regards,
  Jignya

• Integration of Oracle Apps with the Third Party Label Printing Software

  Hi,
  I am integrating Oracle Apps R12 with the third party Label Printing Software(Bartender).
  For generating the Label, I have to create the XML file in Oracle Apps and with the help of Oracle WMS i have to transfer the XML file to the TCP/IP Port.
  Third Party Label Printing Software will pick the file from the TCP/IP Port.
  I am not able to find the way to send the XML file generated by the concurrent program to the TCP/IP Port using Oracle WMS.
  Below are the few links for Oracle WMS:
  http://docs.oracle.com/cd/B25284_01/current/acrobat/115wmsug.pdf
  http://docs.oracle.com/cd/E18727_01/doc.121/e13434/T210618T210847.htm#T210864
  Thanks In Advance..

  Hi,
  I assume, i have already setup profile 'WMS: Label Print Mode' to Synchronous - TCP/IP.
  Basically, you dont have to create any concurrent program for XML creation, Oracle will do it for you 'out of box'.
  Also set 'WMS: Synchronous TCP/IP label request delay' to 100, this is a required step, though none of the documentation talks about it.
  if you think that all the requests are not handled correctly, then you will need to increase this delay further.
  Lastly, verify that the printer is setup correctly in Oracle (Place where you specify IP Address and port)
  Thanks,
  Hrishikesh

• Can I use the third party software to backup my system?

   I have bought a new Thinkpad, and I just want to backup my system, but Lenovo Onekey recovery is not easy to use. I confess that it is very concise and powerful. But, I have to say some disadvantage, that is, It need to press the button and shut all computer. I want to backup my computer silently, and the process won't affect my other operation. I have searched a software- AOMEI Onekey Recovery, but it is the third party software, should I use it to backup my system. there seems to be more powerful in their page http://www.backup-utility.com/onekey-recovery.html, how should I determine? could anyone tell me the advantage or disadvantage?

  Can I use the new Time Capsule to backup my mid 2010 Macbook Pro?
  Yes, if you are asking about using Time Machine to backup the Mac.
  Also can I want to free up my hard disk, can I save my photos and files on the time capsule and later access through wifi?
  You are not thinking of deleting the photos and files on your Mac, are you?  If you do this, you will have no backups for those files.
  Another concern is that Time Machine backs up the changes on your Mac. At some point, Time Machine will automatically delete the photos and files from the Time Capsule.....you just don't know when this might occur.
  In other words, only delete files from your Mac that you can afford to lose.

• Question about the new Yoga 10 HD+

  Hi
  A few questions about the new Yoga 10 HD+ which I hope you can answer.
  I bought the old model last year. Loved the design and long battery time but a few major issues made me return it.
  Somewhere I read that it can't read NTFS over USB so I presume that's the same with an NTFS formatted microSD card?
  Can it read exFAT formatted microSD cards?
  Anyone observed issues regarding audio over bluetooth?
  (I know BT isn't exactly High End HiFi but the old Yoga 10 for some odd reason - most likely a driver issue which nobody cared to fix - sounded *much* worse with quite noticeably distortion while both my phone and a cheap noname tablet I have zero fidelity issues - no matter which of my bluetooth audio devices I tried aptX or not)
  So to avoid buying this only to return it too I really would like to see if I can have my questions answered before buying it.
  While I love the form factor and long running time the above issues are just two mayor dealbreakers to me. Bad audio quality = no joy listening to spotify, local MP3s etc. No NTFS or exFAT = no large movies.
  My old noname android tablet really could use an upgrade so I'm really curious whether this can be it or I should look at the competition and sacrify form factor and battery runtime.
  Thanks in advance.
  EDIT:
  If it's not supporting either NTFS or exFAT on the microSD have anyone tried ext3 and/or ext4?
  I mean with Androids Linux roots it should be a nobrainer to support at least when it comes to royalties unlike NTFS or exFAT where there *might* be some issues with Microsoft.
  Solved!
  Go to Solution.

  Thanks!
  OK. Seems I should just stay clear of this and look elsewhere
  Sony for sure I know support exFAT. I'm usure about Samsung. Odd it seems so hard to find out. File sizes of +4 GB should be taken for granted - it's not 199x anymore...
  Oh well. Wonder whether to just go for one from the competition or perhaps just save the money and wait until 64 bit catches on. Rumors is that the next Nexus 8 will be 64 bit... (I really don't expect an answer on this)

• Sending and collecting campaign data back from the third party...

  We use a third party to distribute and carry out market research and give back general feedback. When creating marketing campaigns how do we set the communication between CRM and the third-party computer systems.
  Anyone.
  Jas

  I know little about the Web Service that you mentioned, although will now read up on it. but before I do can I ask whether that allows us to move things like Campaigns to third party processing companies etc.
  If within the Support desk (Service) can we extract bank statement type info using this same method, and is that method instant?.
  Regards
  Jas

• N00b question about the ABS

  Hey, I am new to Arch and I'm about to install it on my machine (used it a bit in a virtual machine) and I have a small nooby question about the ABS.
  According to the wiki: https://wiki.archlinux.org/index.php/Arch_Build_System
  "Running abs as root creates the ABS tree by synchronizing with the Arch Linux server."
  Does this mean that the ABS tree (not the package) is always downloaded from the official Arch Linux servers, never from any of the mirrors?

  jomasti wrote:
  ANOKNUSA wrote:makepkg is part of the abs package.
  You might be confusing that with makeworld. makepkg is included with pacman.
  Anyway, gregor, you are confusing the AUR with ABS. Although, what you are saying is still possible via the source files when looking up a package on https://www.archlinux.org/packages/. But with both, using a program or using the respective page is a personal choice.
  Yup, you're right.  My mistake.

• EDI message is not sending to the third party for one particular SA

  DearAll,
                 We have the scenario to send the schedule lines to the third party system. for one particular schedule agreement schedule lines not sending to the third party system.
  while processing the messgae it is giving the error as "Message XEDI already processed on 20110317 070042"
  What could be the reason?.. we have checked all the EDI settings maintained for this supplier. some two weeks back there is no problem now only getting this message.
  how to resolve this?..
  Thanks in Advance
  Ananth.

  Hi Hareesh,
  Thanks a lot for the help. I have tried with removing the xml namespace, still the same result. I believe, the problem is with MTs tag in response message structure, bank xml data is trying to map with the response structure in PI, but when its finding the MTs tag I believe then its not mapping, and directly its passing the response in SXMB_MONI without any mapping.
  My question is how can I define my response structure without the MTs tagm, I mean same as what I am receiving from bank.
  Also I tried with without any mapping in response structure, I mean I used only one Message type for "response from bank" to "response to ECC" , without xml namespace, in this case I am able to receive the response in ECC, but there is exception called "PARSE_APPLICATION_DATA Error during XML => ABAP
  conversion: Response Message; CX_ST_MATCH_ELEMENT in " while receiving response, and when I go and see the logs, it says "System expected element 'MT_Response_MT940_Test'" , as its try to match with the defined structure in PI.
  Please experts help me, so my question is how can I avoid the MTs tag in my response structure, I just want to define my response structure in PI same as bank is sending me the data in xml tag, without any MTs tag.
  Thanks,
  Farhan

• Soap Adapter (What info needs to be provided to the Third Party Developer)

  I have the following scenario
  Third Party --> Soap Adapter --> XI --> IdocAdapter --> R3
  My specific question is, what information do I need to provide to the Third Party team in order for them to successfully send a message to XI. (Note that I am using SOAP Adapter)
  1. What is the URL that they will need? the syntax/format?
  2. Do I need to provide a userid and pwd and if so, which userid is normally used.
  3. I think I will need to provide the WSDL also ( I have already generated this). Is this right ?
  4. Any other information that they will need from me.
  Thanks in advance for your responses.
  - Ravi

  James,
  Thanks for you answer. I am using XI 2.0
  1. Would you happen to know what the URL Format for 2.0 is for defining the Web Service.
  2. Also, would the User be an XI user ?
  3. Also, since they are asking me for a URL to the WSDL and not a text file, is there a way to publish it as a URL in 2.0. If not, what's the normally used method of publishing it.
  4. I tried using XmlSpy to send the Soap request and when i provide the WSDL, i get the following error:
  "Schema Error - Undefined schema component 'xmlns' encountered - expected: (abstract | block | final | id | mixed | name)". Is this a common problem with the wsdl and how do i fix this.
  Thanks,
  Ravi
  Message was edited by: ravi kumar
  Message was edited by: ravi kumar