CertificateException: CA certificate does not include basic constraints ext

Hi,
I am using a self signed certificate in our intranet Server. I used jdk1.2.2 for creating the same.Now from a client side application I am trying to connect to the server. While trying to connect, I am getting this error.
CertificateException: CA certificate does not include basic constraints extension
I am using jdk1.4 in the client side.
Could anyone help me with this.
Regards
Sajan Mathew

Add the following code before invoke openConnection()
System.setProperty ("javax.net.ssl.trustStore", "server_keystore");
System.setProperty ("javax.net.ssl.trustStorePassword", "changeit");
server_keystore is the file name of your certificate CA store
changeit is the password of the CA store
Jamie

Similar Messages

  • CA certificate does not include basic constraints extension

    why do i get the error message ? how to decide it ?
    SSLSocket socket = (SSLSocket) factory.createSocket("www.chinatrust.com.tw",443);
    boolean client_use = socket.getUseClientMode();
    boolean client_auth = socket.getNeedClientAuth();
    System.out.println(client_use);//<-true
    System.out.println(client_auth);//<-false
    socket.startHandshake(); //<- error
    javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: CA certificate does not include basic constraints extension

    I had this problem around Valintine's Day 2004, and discovered that Sun's CA Certs for JDK 1.0 to 1.4.0 expired in January 2004!
    Visit this link for step-by-step instructions on how to correct the problem.
    Jai
    http://www.hp.com/products1/unix/java/infolibrary/install_verisign.html

  • Com.adobe.flashaccess.sdk.cert.ServerCredentialException: Certificate does not have the required ext

    [ Problem ]
    I’m running the sample encryption code and I’m running in to this exception:
    "com.adobe.flashaccess.sdk.cert.ServerCredentialException: Certificate does not have the required extended key usage".  I tried looking it up on javadocs but it doesn’t really tell me what’s causing it.  I get this error when encryptContent is called.  Is this something in my settings/environment or something with the certificates?
    [ Solution ]
    If you are using the EncryptContent.java sample code, please check which credential you are using for the "packagerCredentialFile" variable.  Make sure this is pointing at the .pfx file containing the packager credential.

    [ Problem ]
    I’m running the sample encryption code and I’m running in to this exception:
    "com.adobe.flashaccess.sdk.cert.ServerCredentialException: Certificate does not have the required extended key usage".  I tried looking it up on javadocs but it doesn’t really tell me what’s causing it.  I get this error when encryptContent is called.  Is this something in my settings/environment or something with the certificates?
    [ Solution ]
    If you are using the EncryptContent.java sample code, please check which credential you are using for the "packagerCredentialFile" variable.  Make sure this is pointing at the .pfx file containing the packager credential.

  • View object SponsorVwView does not include a primary key attribute RowId

    Hi,
    I have an Entity Object and a View Object which do not have a primary key. So I use a ROWID to act as one. The only thing is that sometimes I get this error which causes the application to fail on the server:
    JBO-30003: The application pool (gov.fda.cber.pts.model.services.CberPtsServiceLocal) failed to checkout an application module due to the following exception:
    oracle.jbo.JboException: JBO-29000: Unexpected exception caught: oracle.jbo.JboException, msg=JBO-29000: Unexpected exception caught: oracle.jbo.PersistenceException, msg=JBO-26028: View object SponsorVwView does not include a primary key attribute RowId of entity base SponsorVw.
    Does anyone have any any ideas on this?
    Thank you in advance

    Hi...
    I believe you'll need a PK so Oracle will know how to update the MV. Is there any particular reason for you not having a PK in FAFG_ASSETS table? As an alternative, you may want to create a new column in this table and having a table trigger/sequence populating this column.
    But It looks like you are using EBS, so, I don't know if you can add new columns to tables.
    See if this thread can help you:
    Re: ORA-12014: table 'XXX' does not contain a primary key constraint
    Regards,
    Marcos

  • SChannel error- The SSL server credential's certificate does not have a private key information property attached to it.

    We have a public SSL certificate that allows for Active Directory sync with LDAPS on port 636 with our email smart host. This was working fine and suddenly stopped working and we are now getting SChannel errors Event ID 36869. There were no changes made
    to the Exchange server, the firewall or the DC which holds the certificate. I have run a new certreq from the DC and then re-keyed the public SSL certificate and re-installed 3 times but the error does not go away and AD Sync with the vendor
    fails. When I run LDP.exe the connection on port 636 fails with "cannot open connection" and the system event log throws the S Channel event 36869 "The SSL server credential's certificate does
    not have a private key information property attached to it"  There is no software firewall set on the DC. When I run Certutil -VerifyStore MY  it shows the current certificates as well as the revoked and expired certificates
    correctly. Certificate 0 is the public cert and is listed with Server and Client authentication, the FQDN of the server is correct and "Certificate is Valid" is listed. The private cert is Certificate 1 and has server and client authentication, the
    FQDN is correct, Private key is not exportable and it ends with Certificate is Valid. I do not see a point in re-keying the cert again until I figure out what the root of the problem is. I have read in some forums that the private cert should not be set to
    expire after the public cert but that does not make a lot of sense when in a situation like this the private cert is of course newer than the public. In fact it is too early to renew the public cert. I have been troubleshooting this for a few days and at this
    point I would have to drop my AD sync with the vendor to LDAP in order to add new users. I do not want to do that for obvious reasons and I do not want to have our spam filtering and email archive service running without Directory sync. Any help would be greatly
    appreciated.

    Hi,
    Have you tried this?
    How to assign a private key to a new certificate after you use the Certificates snap-in to delete the original certificate in Internet Information Services
    http://support.microsoft.com/kb/889651
    Best Regards,
    Amy

  • AZURE The specified certificate could not be found in the LocalMachine certificate store,or the certificate does not have a private key.

    Hello,
    I try to make a HV website in Azure. It took me hours to figure out how to make a HV certificate with my own password. But I figured it out. With the HV application manager I uploaded the certificate to the HV platform. This worked fine. Then I created a
    c# project with also works well on my local machine.
    This is the code I use in the web.config
    <appSettings>
    <add key="ApplicationId" value="24ee15be-1497-4719-ad70-d1223adbf021" />
    <add key="ShellUrl" value="https://account.healthvault-ppe.co.uk/" />
    <add key="HealthServiceUrl" value="https://platform.healthvault-ppe.com/platform/" />
    <!-- when we call the SignOut() method on HealthServicePage, it redirects us to the page below -->
    <add key="NonProductionActionUrlRedirectOverride" value="Redirect.aspx" />
    <!-- The redirect page (specified above) uses these keys below to redirect to different
    pages based on the response from the shell -->
    <add key="WCPage_ActionHome" value="default.aspx" />
    <add key="WCPage_ActionAppAuthSuccess" value="default.aspx" />
    <add key="WCPage_ActionSignOut" value="SignedOut.aspx" />
    </appSettings>
    Next step is to deploy the site to Azure. I was able to upload the certicate to Azure.
    After deploy I get the following error:
    System.Security.SecurityException: The specified certificate, CN=WildcatApp-24ee15be-1497-4719-ad70-d1223adbf021, could not be found
    in the LocalMachine certificate store,or the certificate does not have a private key.
    I checked the certificate on another server with a different key in the web.config
    <add key="ApplicationCertificateFileName" value="c:\Zodos\website\WildcatApp-24ee15be-1497-4719-ad70-d1223adbf021.pfx"/>
    This gives me this error:
    Exception Details: System.Security.Cryptography.CryptographicException: The specified network password is
    not correct.
    So the procedure I followed definitely was not correct:
    It works on my local machine
    It doesn't work on another server or on Azure
    I can see that the procedure I follow is not correct, but what am I doing wrong?
    Wilfred

    I am having the same problem. I see I have updates thru the Mac App Store but when I try and run the System updates in the Mac App Store it errors out. But I can update third party apps.
    Have even tried going thru Terminal to check for software updates but still have same error claiming it can not find the hostname server.
    Jefre

  • When the apple review team review our app,they point out that our  app uses a background mode but does not include functionality that requires that mode to run persistently.but in fact,when the app in background ,the app need data update to make the

    when the apple review team review our app,they point out that our  app uses a background mode but does not include functionality that requires that mode to run persistently。but in fact,when the app in background ,the app need data update to make the function of  trajectory replay come ture。in fact, we have added function when the app  is in background mode。we have point out the point to them by email。but they still have question on the background mode,we are confused,does anyone can help me,i still don't know why do review team can't find the data update when  the app is in background and how do i modify the app,or what is the really problem they refered,do i misunderstand them?
    the blow is the content of the review team email:
    We found that your app uses a background mode but does not include functionality that requires that mode to run persistently. This behavior is not in compliance with the App Store Review Guidelines.
    We noticed your app declares support for location in the UIBackgroundModes key in your Info.plist but does not include features that require persistent location.
    It would be appropriate to add features that require persistent use of real-time location updates while the app is in the background or remove the "location" setting from the UIBackgroundModes key. If your application does not require persistent, real-time location updates, we recommend using the significant-change location service or the region monitoring location service.
    For more information on these options, please see the "Starting the Significant-Change Location Service" and "Monitoring Shape-Based Regions" sections in the Location Awareness Programming Guide.
    If you choose to add features that use the Location Background Mode, please include the following battery use disclaimer in your Application Description:
    "Continued use of GPS running in the background can dramatically decrease battery life."
    Additionally, at your earliest opportunity, please review the following question/s and provide as detailed information as you can in response. The more information you can provide upfront, the sooner we can complete your review.
    We are unable to access the app in use in "http://www.wayding.com/waydingweb/article/12/139". Please provide us a valid demo video to show your app in use.
    For discrete code-level questions, you may wish to consult with Apple Developer Technical Support. When the DTS engineer follows up with you, please be ready to provide:
    - complete details of your rejection issue(s)
    - screenshots
    - steps to reproduce the issue(s)
    - symbolicated crash logs - if your issue results in a crash log
    If you have difficulty reproducing a reported issue, please try testing the workflow as described in <https://developer.apple.com/library/ios/qa/qa1764/>Technical Q&A QA1764: How to reproduce a crash or bug that only App Review or users are seeing.

    Unfortunately, these forums here are all user to user; you might try the developer forums or get in touch with the team that you are working with.

  • Material document 4900000006 does not include an accounting document

    Hi guys
    I created normal sales order, delivery and and released it thr VF01.
    Then I created the RE document without order reference and PGR. But while checking the accounting documents in VL02N it gives the error as follows
    Material document 4900000006 does not include an accounting document
    Diagnosis
    The system cannot find an accounting document for the material document 4900000006.
    Possible reasons for this are:
    The goods movement has no relevance to accounting. Therefore, the system did not generate an accounting document for the material document.
    The material document is a document that was posted before Release 2.1. Such documents must be converted so that the system can find the relevant accounting document.
    The procedure for the subsequent calculation of value is not active in your system. For further information, refer to the documentation on the program for valuating goods movements: RM07MWBU.
    Procedure
    Choose Continue and then choose another function.
    Find out when the material document was created. If the document was created prior to the Release changeover, ask your system administrator to carry out the conversion of the documents. The individual steps required for document conversion are described in the Release Notes for Release 2.1B
    Please give me the solution
    Thanks in advance
    Rahul

    Hi Rahul,
    Can you tell me how did you resolve this error indetail or step by step?  I have a same error in test client.  I am doing returns with stock catergory of E while PGI and then it throws error message.
    Material document 4900000006 does not include an accounting document
    Diagnosis
    The system cannot find an accounting document for the material document 4900000006.
    Possible reasons for this are:
    The goods movement has no relevance to accounting. Therefore, the system did not generate an accounting document for the material document.
    The material document is a document that was posted before Release 2.1. Such documents must be converted so that the system can find the relevant accounting document.
    The procedure for the subsequent calculation of value is not active in your system. For further information, refer to the documentation on the program for valuating goods movements: RM07MWBU.
    Procedure
    Choose Continue and then choose another function.
    Find out when the material document was created. If the document was created prior to the Release changeover, ask your system administrator to carry out the conversion of the documents. The individual steps required for document conversion are described in the Release Notes for Release 2.1B
    regards
    rc gopi

  • The content menu in my Acrobat X Standard does not include the "multimedia" selection??

    What am I missing?  The Adobe Classroom In A Book clearly refers to it...

    Hi,
    I am sorry to hear that you're having trouble in locating 'Multimedia' tools in Acrobat.
    Acrobat X Standard does not include most of the interactive object tools. You need to use Acrobat X Pro for those features. Kindly check the comparison matrix at:
    http://www.adobe.com/products/acrobat/matrix.html
    ~Sandeep V.

  • When I try to watch any video clip I get this:   The version of "Adobe Flash Player" on your system does not include the latest security updates and has been blocked. To continue using "Adobe Flash Player", download an updated version from Adobe's we

    When I try to watch any video clip I get this:
    The version of “Adobe Flash Player” on your system does not include the latest security updates and has been blocked. To continue using “Adobe Flash Player”, download an updated version from Adobe’s website.
    I tried clicking on the Adobe Flash Player.  It said it accepted it but it did not make a difference.
    Can anyone help?
    Thank you!

    This did not work
    On Mon, Oct 27, 2014 at 8:59 PM, Apple Support Communities Updates <

  • The version of "Adobe Flash Player" on your system does not include the latest security updates and has been blocked. To continue using "Adobe Flash Player", download an updated version from Adobe's website.

    The version of “Adobe Flash Player” on your system does not include the latest security updates and has been blocked. To continue using “Adobe Flash Player”, download an updated version from Adobe’s website.

    You haven't actually asked a question, but as stated you should only download Flash Player directy from Adobe.
    Nor have you said what version of OS X and Safari you are running.
    You can check here:  http://www.adobe.com/products/flash/about/  to see which version you should install for your Mac and OS. Note that version 10,1,102,64 is the last version available to PPC Mac users*. The latest version,10.3 or later, is for Intel Macs only, as Adobe no longer support the PPC platform. Version 11.0.1.152 is for Lion.
    * Unhelpfully, if you want the last version for PPC Macs, you need to go here:  http://kb2.adobe.com/cps/142/tn_14266.html  and scroll down to 'Archived Versions/Older Archives'. Flash Player 10.1.102.64 is the one you download. More information here:  http://kb2.adobe.com/cps/838/cpsid_83808.html
    You should first uninstall any previous version of Flash Player, using the uninstaller from here (make sure you use the correct one!):
    http://kb2.adobe.com/cps/909/cpsid_90906.html
    and also that you follow the instructions closely, such as closing ALL applications first before installing. You must also carry out a permission repair after installing anything from Adobe.

  • Cannot open install assistant.  I get this error message: The application cannot be installed due to a certificate problem.  The certificate does not match the installed application certificate, does not support application upgrades, or is invalid.  Pleas

    How can I downloade a trial of Adobe Elements 12? 
    I followed the instructions to download assistant...but get this message: The application cannot be installed due to a certificate problem.  The certificate does not match the installed application certificate, does not support application upgrades, or is invalid.  Please contact the application author.

    Hi alposer,
    Please remove the copy of the Adobe Download Assistant you currently have installed and then reinstall the Adobe Download Assistant.
    Regards,
    Rave

  • Certificate does not contain the correct site name

    Hello,
    I have to make a midlet that connect to a tomcat 5.5.9 server with ssl.
    I import the certificate whit tomcat alias in the wireless toolkit but when i run the midlet this error appear: Certificate does not contain the correct site name
    import java.io.*;
    import javax.microedition.midlet.*;
    import javax.microedition.io.*;
    import javax.microedition.lcdui.*;
    public class HelloNet extends MIDlet implements CommandListener , Runnable{
    // User interface command to exit the current
    // application.
    private Command exitCommand = new Command("Exit",
    Command.EXIT, 2);
    // User interface command to issue an HTTP GET
    // request.
    private Command getCommand = new Command("Get",
    Command.SCREEN, 1);
    /// The current display object.
    private Display display;
    // The url to GET from the 'net.
    private String url;
    * Initialize the MIDlet with a handle to the
    * current display.
    public HelloNet() {
    url = "https://127.0.0.1:8443/Hello.txt";
         display = Display.getDisplay(this);
    * This lifecycle method should return immediately
    * to keep the dispatcher
    * from hanging.
    public void startApp() {
         showPrompt();
    * Display the main screen.
    void showPrompt() {
    String s = "Press Get to fetch " + url;
    TextBox t = new TextBox("Http Result", s,
    s.length(), 0);
    t.addCommand(exitCommand);
    t.addCommand(getCommand);
    t.setCommandListener(this);
         display.setCurrent(t);
    * pauseApp signals the thread to stop by clearing
    * the thread field.
    * If stopped incorrectly, it will be restarted from
    * scratch later.
    public void pauseApp() {
    * destroyApp must cleanup everything. The thread
    * is signaled
    * to stop and no result is produced.
    * @param unconditional is a flag to indicate that
    * forced shutdown
    * is requested
    public void destroyApp(boolean unconditional) {
    * commandAction responds to commands
    * @param c command to perform
    * @param s Screen displayable object
    public void commandAction(Command c, Displayable s) {
         if (c == exitCommand) {
         destroyApp(false);
         notifyDestroyed();
         } else if (c == getCommand) {
              Thread th= new Thread (this);
              th.start();
    * Read the content of the page.
    public void run() {
    TextBox t = null;
    StringBuffer b = new StringBuffer();
    HttpsConnection c = null;
    InputStream is = null;
         try {
         int len = 0;
         int ch = 0;
         System.out.println("Cerco di leggere");
    c = (HttpsConnection)Connector.open(url);
    c.setRequestMethod(HttpsConnection.GET);
         is = c.openInputStream();
    // length of content to be read.
    len = (int) c.getLength();
    if (len != -1) {
    // Read exactly Content-Length bytes
    for(int i=0; i<len; i++) {
    if((ch = is.read()) != -1) {
    b.append((char) ch);
    } else {
    // Read until connection is closed.
    while((ch = is.read()) != -1) {
    len = is.available();
    b.append((char) ch);
    t = new TextBox("Https Result", b.toString(),
    b.length(), 0);
         } catch (Exception e) {
    e.printStackTrace();
    String s = e.toString();
    if(s != null) {
    t = new TextBox("Https Error", s, s.length(),
    0);
    } finally {
    if (is != null) {
         try {
              is.close();
         } catch (Exception ce) { }
    if (c != null) {
         try {
              c.close();
         } catch (Exception ce) { }
    display.setCurrent(t);
    }

    re: code tags, please see http://forum.java.sun.com/help.jspa?sec=formatting.
    As for the rest:
    See, we now know that you used keytool to generate you certificate. You need a new certificate. This time, when keytool asks you for a first and last name, type 127.0.0.1.

  • Create batch input, does not include all records

    Have anyone experienced, when doing Create Batch Input from the LSMW menu it does not include all rows.
    For example I have a .txt file with 3000 records that I specify in "Specify Files"
    "Read Data"  reads 3000 records.
    "Convert Data" Converts 3000 records
    "Create Batch input Sessions" creates 2461 records? ?
    I have noticed that this happen when the system is busy running many batches and Idocs.

    I'm talking about LSMW programs with regular Batch input Recording.
    I haven't noticed which transactions it skips since I do not run the Batch, when I notice that it does not include all rows as I have read and converted.
    However usually if I "Create the batch input session" once again it includes all the records from the conversion before.
    But since Create a batch input can take a long time depending on the amount of transactions it creates this is not a desired option.
    So it is not possible that the transactions it does not create are errors since its possible to run them successfully. And I haven't used any SKIP TRANSACTION in the mapping step.
    But like I said this only happens when the system is running many batches / idocs at the moment, for example if we are loading the material master at the same time as I run my batch input programs.

  • A JE created from the AP Invoice does not include the project # on all trx

    A JE created from the AP Invoice does not
    include the project # for the amounts entered in the freight box. To
    duplicate, do the following:
    1. Open an AP Invoice
    2. Enter BP Code
    3. Select Service type
    4. Enter a Project Code in drop down box on Accounting tab
    5. Enter a line in the Contents; specify GL Account, amount and Tax
    Code Open Freight box
    6. Enter an amount in one of the lines
    7. Click ADD
    8. Go back to the invoice and go to the Accounting tab Click on the GL
    journal note and you can see that the line corresponding to the
    contents line has a project, but the line corresponding to the Freight
    box item does not.
    My customer users these projects when printing GL agings and the
    information is very important. Shouldn't this information be carried
    forward on all transactions on the Journal entry? Is there a way to get this information to post?

    Hi Pat,
    the project code (PC) on the marketing document may only be applied to the business partner (BP), hence the only row in the associated journal entry (JE) with this project code is that of the BP.
    You can link project codes to specific accounts (CoA -> select account -> account details -> project code) & this project code will then be assigned every time the account is found in a JE.
    If you require the project code to be applied to the freight, you may assign this project code to the account you have defined for this freight. The drawback is naturally that the project code will then  be pulled every time this freight is used, regardless of whether or not the PC is associated with the BP or not.
    It is possible to manually assign project codes to every row in a journal entry, hence this should also be possible with SDK. You might explore the possibility whether it might be possible to automatically assign the BP PC to all rows in the JE using a script.
    All the best,
    Kerstin

Maybe you are looking for