A QUICK QUESTION ABOUT ANYCONNECT THIRD PARTY CA WITH OCSP RESPONDER.
Hi guys,
i have successfully implemented anyconnect with a third party ca server (EBJCA) and CRL for revocation checking.
Now i want to implement OCSP instead of CRL.
I followed this document:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00809a3fa5.shtml
In this document it is mentioned that :
Configure OCSP
Configure OCSP Responder Certificate
The OCSP configuration can vary dependent upon the OCSP responder vendor. Read the manual of the vendor for more information.
Obtain a self-generated certificate from the OCSP responder ?
Follow the procedures mentioned previously and install a certificate for the OSCP server.
Note: Make sure that revocation-check is set to none. OCSP checks do not need to happen on the actual OCSP server.
1- My question is how to generate a self signed certificate from OCSP ?
2- If we are not able to get a self signed certificate from OCSP Responder, is there any other work arround ?
3- last why we use certificate mapping rule for OCSP certificate mentioned in the DoD's document.
feel free to share your views.
> does the client (e.g. clients using CAPI/CAPI2) also check the "Third-Party Root Certification Authorities" X509 store or do the Certs in this logical store also reside (get copied to) the "Third-Party Root Certification Authorities"
X509 store
yes. Trusted Root CAs container is an aggregated container for all trusted root CAs (for natively trusted CAs and for Root Certification Program members).
Vadims Podāns, aka PowerShell CryptoGuy
My weblog: en-us.sysadmins.lv
PowerShell PKI Module: pspki.codeplex.com
PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
Check out new: SSL Certificate Verifier
Check out new:
PowerShell File Checksum Integrity Verifier tool.
Similar Messages
-
A question about the "Third-Party Root Certification Authorities" X509 store
Hello All
Can someone please help me with the following question.
Reading some MS documentation I see MS have a program called 'Microsoft Root Certification Program" where by if a third party ACME for example create a Root CA and it passes this program then MS will add the CA Cert to Windows Update for downloading
to the clients "Third-Party Root Certification Authorities" X509 store, correct so far?
if so when a client is building a certificate chain for a cert I understand it first checks its local store for relevant certificates (e.g. Trusted Root Certification Authorities etc..) then if not their checks the AIA extension so locate the cert.
Question does the client (e.g. clients using CAPI/CAPI2) also check the "Third-Party Root Certification Authorities" X509 store or do the Certs in this logical store also reside (get copied to) the "Third-Party Root Certification
Authorities" X509 store. In other words are these store names in the GUI just logical partitions for human viewing but actually reside in the same location in the registry and therefore checked by the client
Thanks All
AAnotherUser__
AAnotherUser__> does the client (e.g. clients using CAPI/CAPI2) also check the "Third-Party Root Certification Authorities" X509 store or do the Certs in this logical store also reside (get copied to) the "Third-Party Root Certification Authorities"
X509 store
yes. Trusted Root CAs container is an aggregated container for all trusted root CAs (for natively trusted CAs and for Root Certification Program members).
Vadims Podāns, aka PowerShell CryptoGuy
My weblog: en-us.sysadmins.lv
PowerShell PKI Module: pspki.codeplex.com
PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
Check out new: SSL Certificate Verifier
Check out new:
PowerShell File Checksum Integrity Verifier tool. -
Question about using third party jar files in Java Web Start Environment
Hi everybody, I got a very strange problem and still can't figer out how to solve it. Can anyone help to overcome this problem?? Thanks in advance.
Question: I wrote a simple java swing application to connect to Oracle database. I packed whole my classes and a third party jar file(classes12.jar) to a new jar file named "IRMASSvrMgntGUI.jar" and then use command 'jarsigner' to signed IRMASSvrMgntGUI.jar. There is no problem when I execute 'java -jar IRMASSvrMgntGUI.jar' in the command line. But when I execute this application via Web Start Environment, an "java.lang.NoClassDefFoundError: oracle/jdbc/driver/OracleDriver
" error occured with the following detail log shown in Jave Web Start Console:
=============================================================
java.lang.NoClassDefFoundError: oracle/jdbc/driver/OracleDriver
at DBConnection.getNewConnection(DBConnection.java:25)
at IRMASSvrMgntGUI.actionPerformed(IRMASSvrMgntGUI.java:524)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$ForwardActionEvents.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.AbstractButton.doClick(Unknown Source)
at javax.swing.plaf.basic.BasicMenuItemUI.doClick(Unknown Source)
at javax.swing.plaf.basic.BasicMenuItemUI$MouseInputHandler.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
==========================================================================
contents of the manifest file I used to create this jar file are as follows
===================================
Manifest-Version: 1.0
Main-Class: IRMASSvrMgntGUI
Class-Path: classes12.jar
Created-By: 0.9a (itoh)
===================================
and file structures in "IRMASSvrMgntGUI.jar" is
====================================
META-INF/
classes12.jar
DBAuthenticateDialog.class
DBConnection.class
IRMASSvrMgntGUI.class
====================================If you directly include classes12.jar in IRMASSvrMgntGUI.jar, the classloader won't be able to find the classes inside classes12.jar. You should sign classes12.jar separately and include that in jnlp along with your application specific jar. When you're launching your app using "java -jar somefile.jar" then the classpath settings in manifest file are used, but that's not the case when you start using JWS since in this case the classpath is based only on the " <jar href=..." entries in jnlp.
-
A quick question about WebDynpro SLD and R/3 with concurrent users
Hello ,
I have a very quick question about Webdynpros and SLD connecting to an R/3 system, when you configure a webdynpro to connect to an R/3 system using SLD, you configure a user name and password from the R/3 for the SLD to use. What I would like to know is when I have concurrent users of my webdynpro, how can I know what one user did in R/3 and what another user did? Is there a way for the users of the web dynpro to use their R/3 credentials so SLD can access the R/3? Like dynamically configuring the SLD for each user?
- I would like to avoid leaving their their passwords open in the code ( configuring two variable to get the users username and password and use these variables as JCO username and password )
Thanks Ubergeeks,
GuyHi Guy
You will have to use Single Sign On to achieve this. In the destination you have defined to connect to R/3 , there is an option to 'useSSO' instead of userid and password. This will ensure that calls to R/3 will be with the userid that has logged into WAS. You wont need to pass any passwords because a login ticket is generated from WAS and passed on to R/3. The userid is derived from this ticket.
For this to happen you will have to maintain a trust relation ship between R/3 and your WAS ,there is detailed documentation of this in help files. Configuration is very straight forward and is easy to perform
Regards
Pran -
Hi, I have a quick question about port forwarding/mapping. My question, lets say I am running MSN messenger, who's ports are 6880-6900. But lets say I am running a torrent application or something else that requires those ports. If both applications were running at the same time, would this cause interference with them on the same ports or now. Thanks
NathanNormally, only one application can listen to a specific port number at a time. If MSN is grabbing those 21 ports then your torrent app won't be able to run.
However, most apps don't work that way - even if they use multiple ports, they don't use them all at the same time, so MSN might use 6880 when it starts up, leaving the others open for other applications to use if needed.
Only experimentation will answer that one. -
Make sure that your bean is implementing the serializable interface and that
you are accessing the bean from the session with the same name.
Bryan
"Sandeep Suri" <[email protected]> wrote in message
news:[email protected]..
Hi, I have quick question about use of USEBEAN tag in SP2. When I
specify a scope of SESSION for the java bean, it does not keep the
values that I set for variable in the bean persistent.Thanks,Sonny
Try our New Web Based Forum at http://softwareforum.sun.com
Includes Access to our Product Knowledge Base! -
Integrating third party recruitment with SAP
Hi folks,
I had a question regarding intergrating the third party system with SAP HR masterdata. I am basically looking at transferring the applicant data from the Recruiting (third party tool ) system into SAP HR Masterdata. I found using the feature PAPLI something like integration could be done. I do not know how ???
Right now, at the click of button something like Data transfer (entering the applicant id) can be manually imported into SAP Masterdata from the SAP recruiting module on the same system.
Can such a process be achieived using a third party tool? Is direct transfer process from the thrid party tool into SAP Employee Masterdata possible? Is the feature PAPLI (found from IMG) something like this can be accomplished?
The version we are using is SAP 4.6C
Any thoughts or leads in this area will be highly appreciated.
Thanks in advance,
SKI am not sure of any standard integration programs specific to recruitment, but through customization we can integrate third party rectt systems like People click, HRP etc.
Develop inbound programs with ALE-IDOC system to transfer the data to Rectt tables.
The switch will control activation of integration between the systems.
If this helps, pl do reward.
Thanks
Narasimha -
How to link third party software with labview program ?
I have designed a labview
program to analyse and make
graph and save the datas
from the photon counter using
ni USB DAQ 6008. And the
photon counter is controlled
by the third party software with
itself. both programs are
executing successfully. But
my task is run both the
program at the same time. i.e.
link the third party software
with my labview program.
How to i do this?Your question is too vague since you give no information as to this third party application. Is it an application you wrote? Is it an application that you cannot change? Does it have a programming interface? Can you eliminate this third-party application and control the photon counter yourself? Have you tried to do a search, as this question has come up before many times. For example:
http://forums.ni.com/t5/LabVIEW/how-do-I-use-labview-to-control-other-programs/m-p/424765
http://forums.ni.com/t5/LabVIEW/How-to-operate-another-application-s-GUI-from-LV/m-p/668088 -
Webinar- Connect Third Party Systems with SAP B1 – DI API, DI Server, B1WS
Webinar happened on 21st August.
Get the Presentation, Video recording and answers of all the questions asked in the webinar through the below link.
Webinar- Connect Third Party Systems with SAP B1 - DI API, DI Server, B1WSHi Oleksiy,
I don't see anything strange in your code. You should receive an error message but it shoudn't loop without end ;o(
The only thing I can propose you is to create a message for support, they will have a deepest look into your problem.
Regards
Trinidad. -
Can we integrate third party tool with solution manager
Can we integrate third party toll with solution manager , If it is possible what API's we have?
Hi Santosh Asuthkar,
thank you for your answer.
I've already read the steps in trx. spro and several documentations in sdn.
There was a hint to trx. ictconf, wsconfig, lpconfig, wsadmin. If you call these transactions there
is a message that these trx. are old and trx. SOAMANAGER should be used.
Question is how to activate the webservice "ICT_SERVICE_DESK_API" in SOAMANAGER.
I've never handled with bindings and proxy classes.
Best regards
Klaus -
Integrate third party libraries with JBuilder 2005
Hi,
Does any body know how to integrate any third party APIs with JBuilder 2005. It would be of great help if anybody of you could jot down the steps to integrate third party APIs with JBuilder.I've got to use the JDIC API(https://jdic.dev.java.net) and the PDFBox APIs(www.pdfbox.org) with in JBuilder.
Thanks & Regards,
DTYep got it. Shoud have refered the docs before asking this question. I used the following menu item to add a third party .jar file
Project->Project Properties: select the Paths option and add the required jar file by selecting the "Required Libraries" tab.
Regards,
DT -
Problem in Partial Billing for Third Party Sales with Shipping Notification
Hello Guys,
There is one issue related to a scenario of Third party Sales with shipping notification. Here the basic process that runs
are : Sales order --- > PR -- > PO --> MIGO --> Billing document --> Vendor Invoice Verification.
In this specific scenario, partial billing is not happening and the billing relevance for item category "B" and in copying control data
from sales order to billing doccument, the biling quantity field is "A".
Could anyone throw some light on the configuration part so that partial invoicing can happen ??? Please make a note of the fact
that billing documents are generated after MIGO is done.
Regards,
SarthakFinally resolved
-
Third Party Order With Shipping Notification
Hi SD folks,
What is the Movement type we need to enter to do a dummy GR for third party order with shipping notification.
Regards,
Rahul101
-
Need connectivity of SAP Oracle with Third Party tool with dsn
Hi Friends,
We need to access SAP's Oracle database with third party tool with the help of dsn creation. For that we need to create 2 staging tables and need a new segment for these tables. Our data will move from SAP transactions to these 2 tables and we want to fetch this data via dsn into another third party S/W.
I am unaware of such kind of working, can you please help me how to create new segment and how to create dsn for accessing tables in this segment.
Our requirement is as follow.
The staging tables are required in the SAP database with user name and password. The user should have all access to the staging table only.
Requesting your kind help on this issue. Please suggest for further processing of activity.
Rgds, Krishan Raheja.Hi,
Common way to integrate SAP (database) with third party Application is to use and implement SAP Connector (Java or .Net).
Using this, you can fetch the data from SAP database to use it in Third party application.
As per my understanding the method you mentioned, will void the SAP database license term.
So Please check before doing such configuraiton. Also that method is NOT recommended..
Regards.
Rajesh Narkhede -
Third party integration with Oracle Apps
Hi friends,
I have a dot net application and I would like to integrate that with oracle applications(specifically HR module). Can I do that? Does oracle apps provide any APIs to provide this third party integration with 3rd party software we have?
can you please post any links if there is one which helps me in this direction
thanksHello,
I am new on this forum and I have difficulty in beginning.
I'm working in a similar project, indeed I need an example or a document which can help me for using the HRMS api's of oracle e-business suite via a dotNet plateform or SharePoint application.
I have to work on a middelware allowing retreiving and persisting data from oracle e-business suite database using oracle HRMS api's like hr_appraisals_api. So haw can i call these api's from .NET application how can i use a .NET code to call these api's ?
Can you help me please ? i'm waiting for your answers if possible and this is my e-mail address if necessary "[email protected]" .
I would be so grateful if someone can help me. Thank you in advance.
Cordially.
Maybe you are looking for
-
I just got a white frame in the middle of my images in viewer mode in Aperture 3. What is it and how did it get there and how do i get rid of it?
-
HT2186 wiped partition on my MacBook Pro
I have wiped partion on my MacBook Pro, Restored to orignal Mac OSX Lion 10.7 from internet and it is asking for an apple id. I have purchased a used mac. Orignal owner not known Solutions
-
How to access Subsequences/callees properties?
Is there any method to access properties or variable directly from caller to callee, without using parameter and global variable?
-
How to correct edges with high contrast?
I have been looking for a solution to edge correction for a long time. As all of you have noticed, SD and HD video camcorders are producing a "sharpening" or extra contrast in edges of high contrast. Here's a typical example (a part of a HD frame), w
-
I have the new 5s and my fingerprints don't work - please help.
Hi - I have entered different fingers for my fingerprint and they don't work - what is up with this - thank you for your help I thought this phone was suppose to make your life easier. thanks