Certificates from CA's and the keystore
Hello all,
I have tracked through a series of forum topics that seem to ask similar questions and receive similar answers regarding both signing jars and using the certificates for communications.
Forgive the overlap, but I have a slightly related question.
Is the only way to use the keystore (and keytool to manage the keystore) when signing jars by generating a key pair at the start? Is that why all the examples always start with that option, and none of them start from a scenario that is different?
Is it possible to come in with an existing CA signed certificate, and the CA's root certificate and sign the jars? Would that setup work for communication at all?
I have tried this for signing, and both certificates end up as trustedCertEntries within the keystore, but this does not allow the signing of jars since there is no keyEntry. The error message is:
"jarsigner: Certificate chain not found for: and. and must reference a valid KeyStore key entry containing a private key and corresponding public key certificate chain."
I have not tried it for communication.
Is there some other alternative to generating the key-pair directly in the keystore, exporting the csr, and getting the CA to sign and reply to that csr?
My question stems from a customer wanting to only provide the certificate they want to use, and maybe the CA root cert if necessary.
Thanks much in advance!
Edited by: gennadius on Dec 19, 2007 3:52 PM
Is it possible to come in with an existing CA signed certificateBut this isn't the beginning of the process.
A signed certificate results from a Certificate Signing Request (CSR) being submitted to a CA.
A CSR is generated from a private key/public key pair. But it only contains the public key. So you have to get it signed and then re-import it to the same keystore which originally contained the private key, to complete the association between the signed cert and the private key.
The signed certicificate is a public authentication that the owner of this certificate uniquely owns this public key, which corresponds to a private key. Without the private key the entire exercise can't get started.
So unless you can find a way to get the private key from whereever it was when the CSR process was started, just importing the signed certificate doesn't give you a prioviate key. Without a private key, you can't sign things, decrypt, be an SSL authenticated endpoint, etc.
And if you could cart private keys around like that, they wouldn't be private, so the entire point of PKI is lost.
Similar Messages
-
I am trying to install Lightroom and I am OK until it asks for a serial number. I purchased Lightroom from B&H and the have entered the seal number on the the B&H invoice. Nothing happens, not all the entry boxes are filled with the serial number that was provided by B&H. I looked for a serial number on and in the box it came in, nada. Need a bit of help here, what can I do?
RJ@Try to connect on Live chat one more time.
Still not connected , better to contact Adobe Phone Support
Click on Phone option and check once :
Contact Customer Care -
I have an iPhone sync'd to my iTunes. My boyfriend has his own iPhone with his iTunes account set up within it. We want to sync his iPhone to my iTunes account on the PC but we want to retain everything from both phones and the iTunes account. Is this possible? Help!
zoe1713 wrote:
Is this possible?
No. If you connect his phone to your iTunes account/computer, ALL iTunes content on his phone will be erased. By design, iPhone syncs or manually manages iTunes content with ONE computer at a time. -
I recently lost my iphone to which had of alot purchased music on it, but when i've come to retrieve the music from my itunes and the music is not there? The purchases show on my history but the music is nowhere? How can i get my purchases back please?
By any chance, did you have the Find My iPhone app installed prior to it being stolen?
Reporting a lost or stolen Apple product
Hopefully you had your iTunes purchases backed up to an external source such as an external drive or CD's? -
I am trying to email from my iphone and the message comes up it is rejected by server, it does not allow relaying. I am receiving emails ok. How do I fix this
What's the model number of your Lexmark printer?
-
Hi i am have had a lot of trouble emptying my trash. when i go to put something in there it asks from my password and the item goes off the screen, but this does not clear any space on the hard drive.
1. Triple-click the line below to select it:
~/.Trash
2. Right-click or control-click the highlighted line and select
Services ▹ Show Info
from the contextual menu. An Info dialog should open.
3. The dialog should show "You can read and write" in the Sharing & Permissions section. If that's not what it shows, click the padlock icon in the lower right corner of the window and enter your password when prompted. Use the plus- and minus-sign buttons to give yourself Read & Write access and "everyone" No Access. Delete any other entries in the access list.
4. In the General section, uncheck the box marked Locked if it's checked.
5. From the action menu (gear icon) at the bottom of the dialog, select Apply to enclosed items and confirm.
6. Close the Info window and test. -
Is there any official market or store or anything in Egypt to fix my iphone 4 it jumped from 5th floor and the back hous was crashed and the network sensor was not working good but the phone and the screen and the others things are ok so plz help ???
my iphone is now just coverd with case and the back house is crasedEtisalat, Mobinil and Vodafone provide warranty service in your country. You can also search Google for a 3rd party repair shop near you.
-
I REMOVED THE YOUMAIL APP FROM MY PHONE AND THE DEFAULT GREETING FROM THE APP STILL ANSWERS MY PHONE,
HOW DO I GET IT NOT TO?As Dah•veed said, you can delete an app on one divice, and still have it stay on another. The syncing only applies for downloaing apps when you have "Sync Purchases" enabled for the App Store. This goes for the iTunes, iBooks, and Podcasts apps as well.
-
i bought a iphone 3g from market yesterday and the phone is showing a usb an also itunes logo on the screen, the ive tryed restore and update, but once this has finished it gives me erra code (1015) can anybody help me plz
Error 1015: This error is typically caused by attempts to downgrade the iPhone, iPad, or iPod touch's software. This can occur when you attempt to restore using an older .ipsw file. Downgrading to a previous version is not supported. To resolve this issue, attempt to restore with the latest iPhone, iPad, or iPod touch software available from Apple. This error can also occur when an unauthorized modification of the iOS has occurred and you are now trying to restore to an authorized, default state.
http://support.apple.com/kb/TS3694#error1015. -
I bought a new IPHONE from apple reseller and the earpiece is not working.
There is no sound .Speaker and headfone are working but earpiece is not working.
How can i get it replaced.You can get service information on this web page.
Regards. -
I have had IPhones since their inception. Last phone was the 5. A few months ago, I upgraded to the 6 Plus.
Here is my issue.
On my 5, my car radio (which has USB port) allowed me to plug in and listen to radio or music from my phone and the bonus was it charged the phone as well. All worked great.
Now with the 6 Plus, neither of things work. The message on the radio (Kenwood) says I Pod error. The message on my phone say's "this device is supported".
I have called on this before and was told you are aware and that the issue will be addressed in a future update. There have been several updates on IOS 8 and the issue remains.I have a Kenwood KDC-X695. When I purchased this stereo and had it installed, I had an ATT iPhone 4.
It worked with the stereo, but had a few issues. I had purchased a few audio books that I would listen to while driving. When I plugged it in it would immediately begin to play the book from the beginning or if I had been listening to music, it would start playing the song that was at the top of the song list.
The stereo came equipped with Firmware version 3.05. I upgraded to the iPhone 5 a year later. I had that phone for approximately 2 years. The song or book issue remained the same.
I just recently upgraded to the iPhone 6 and the Bluetooth function still works, however the USB port on the stereo that the phone plugs into to allow files on the phone to play through the stereo no longer works.
I contacted the service provider (Verizon) and after speaking to several different technical support technicians, they provided me the phone numbers for Kenwood and Apple because they were unable to help me.
I spoke with Kenwood technical support the following day and after a few fumbling miscues from the technical advisor, it was suggested that I upgrade the firmware, even though the Kenwood literature warns against this if the Bluetooth portion is working, because if there is a problem with the upgrade, it can render the Bluetooth useless and non-functional. The advisor did suggest the latest firmware on the second or third attempt, after I pointed out what I was able to glean from my initial search.
Later that day, I went back to the Kenwood site (from their homepage) and by using their selection tools, discovered that this particular model was only ever intended to be used with the iPhone 4S (the technical advisor was not aware of this, even though I mentioned this during my phone call earlier in the day). According to the Firmware selection tool, my iPhone 5 should not have worked with it.
I performed the Firmware upgrade, and it took 13 minutes. This was less than the 15 minutes that was forecast in the Kenwood literature. The Bluetooth still works but the USB cable connection still causes the unsupported device message that I received prior to the upgrade. I am incredibly annoyed and disappointed.
By upgrading to the iPhone 6, I have three choices; (1) only use the Bluetooth for phone calls without the ability to play other files from my iPhone 6 (2) forced obsolescence of my stereo, requires buying a new stereo (3) return my iPhone 6 and go back to my iPhone 5.
I do not believe that I should have to be a software/Firmware/hardware engineer, vetting every single device that I own; prior to upgrading a cell phone.
I am incredibly annoyed with Apple at the moment.
I have a separate Bluetooth headset that worked with both my iPhone 4 and iPhone 5 that the iPhone 6 simply does not recognize. That is another story for another time.
Currently, I am incredibly underwhelmed with Apple. -
I was uploading photos to iPhoto from memory card and the program froze
I was uploading photos to iPhoto from memory card and the program froze.
I can't get rid of it and it won't respond to anything.
Even restarted computer and it's still there.
I can continue using computer for other things, but can't get out of iPhoto.
Version 9.3
iPhoto 11
Thank you for any help.
Herb Jones
TheOnlyOblongWOW.................we do learn something everyday.........
Thank you very much Terence
Herb Jones -
First i imported my photos to iphoto 8.1.2 when it finished, asked me if i want to "delete them from the camara" i clicked yes and crashed while deleting photos (7,000) from my iphone and the photos disappeared from iphone and iphoto
No early version of iPhoto can open a Library from a later version.
You can try revert the Library with iPhoto Library Manager
http://www.fatcatsoftware.com/iplm/Help/downgrading%20a%20library%20to%20an%20ea rlier%20version%20of%20iphoto.html -
I want a solution to my problem and i hope to see any number to contact you for information i'm from saudi arabia and the problem has not been solved so far and i sent my problem via a Email twice before
Most of the people on these forums, including myself, are fellow users - you aren't talking to iTunes Support here.
Have you contacted iTunes Support as was suggested on your duplicate posts :
https://discussions.apple.com/message/22178793#22178793
https://discussions.apple.com/message/22178411#22178411 -
FCP X deleted about 2/3 of events to a project and the project. I uploaded the project to vimeo from FCP X, and the next day when I tried to use FCPX, they were gone, the events are gone from fcp and my ext hd, the project is still on the ext hd, but it won't recognize in FCP X even though my ext HD shows in the project tab. anybody any clue how to bring it back?
Thanks for the reply Andy.
No, I don't have identical projects on a second drive, only saving to the movies folder on internal HD. The files and media save there fine, but fcp doesn't seem to recognise them the next day, just opens with one new untitled event and no projects.
I have tried saving to en external HD tonight and will see if the problem happens again with this set up when I restart tomorrow.
But I should be able to save to internal HD, so something is going wrong...
Peter
Maybe you are looking for
-
Unable to send or receive mail on my Mac Book Pro
I created a new ICloud acct. in mail, but am now unable to send, or receive Messages. My previous acct. just quit, doing it's Job. I have another acct. with my server, Telus, but always used the mac acct. to communicate with Friends, and the Telus on
-
Mail passwords are not saved to the Keychain
This problem seems to relate to the long standing Mail Password issue that has been frustrating many Tiger (and Panther) users. Firstly: Mail keeps asking for account passwords in an unpredictable way. Even if I "save these to the keychain" via 'allw
-
Three questions about the creation of secondary indexes in ODS design mode
1. When we right click the Indexes folder in ODS design to select Create to create the Index folder 010, a small window pops up with a check box called "Unique", do we have to check this checkbox to create folder 010? 2. If we would like to include 3
-
Getting album artwork for CD's
Yo, one more question, I have all my CD's in iTunes. However, none of them have artwork. Is there any good third party software/ way to easily get album artwork for all my CD's thanks!
-
Hello Since we upgraded to IE10 on a 2008 R2 terminal server we're getting the error "This page cannot be displayed" After a few minutes it would start working again, I was able to reproduce the error by going to a site with a lot of images, like goo