Dates in creating X.509 certificate programming without BouncyCastle sample
Thank you for the certificate programming without BouncyCastle sample.
How can I set before & after certificate dates ?
There is deprecated method in the above solution...please find the updated code below
import sun.security.x509.*;
import java.security.*;
import javax.security.cert .*;
public class GenCert
public static void main(String[] args)throws Exception
CertAndKeyGen cakg = new CertAndKeyGen("RSA", "MD5WithRSA");
cakg.generate(1024);
PublicKey publicKey = cakg.getPublicKey();
System.out.println(publicKey);
PrivateKey privateKey = cakg.getPrivateKey();
System.out.println(privateKey);
X500Name name = new X500Name("One", "Two", "Three", "Four", "Five", "Six");
System.out.println(name);
//X509Cert cert = cakg.getSelfCert(name, 2000000); //deprecated
java.security.cert.X509Certificate certificate = cakg.getSelfCertificate(name,2000000);
System.out.println("cert: "+cert);
//X509Certificate certificate = X509Certificate.getInstance(cert.getSignedCert());
certificate.checkValidity();
System.out.println("Issuer DN .......... " + certificate.getIssuerDN());
System.out.println("Not after .......... " + certificate.getNotAfter());
System.out.println("Not before ......... " + certificate.getNotBefore());
System.out.println("Serial No. ......... " + certificate.getSerialNumber());
System.out.println("Signature Alg. ..... " + certificate.getSigAlgName());
System.out.println("Signature Alg. OID . " + certificate.getSigAlgOID());
System.out.println("Subject DN ......... " + certificate.getSubjectDN());
}Edited by: uglyhunK on Sep 1, 2008 9:18 PM
Edited by: uglyhunK on Sep 1, 2008 9:19 PM
Similar Messages
-
How to create a variant for a program without selection screen
Hi All,
I've created one program which takes the data from 30 tables and loads into one final table.
This program is already moved to Production.
But while creating variant it's not allowing, since the program doesn't have the selection screen.
Is there anyway where I can create a variant in production without selection screen directly as the program code is already moved to production.
Thank You,
Regards,
Karthik.ChHi ,
Are you running this program in a process chain?? -
Does "Init without data transfer" creates delta queues?
Does "Init without data transfer" creates delta queues?
Hi,
Yes, Once initialization successful for particular source system, you can see entry at Delta Queue(RSA7).
Hope it Helps
Srini -
To create an x.509 certificate not using any tools
I'm having a project, is to generate an x.509 certificate without using any other tools, did anyone know the bytes structure of an x.509 v1 certificate, please kindly help! thanks!
x509 certificates are described using ASN.1 notation; see http://www.ietf.org/rfc/rfc2459.txt for all the gory options. The ASN.1 structures are encoded into bytes by following the Distinguished Encoding Rules (DER) for ASN.1. See "A Layman's Guide ..." at http://luca.ntop.org/Teaching/Appunti/asn1.html.
-
Configure JAAS login module stack to support x.509 certificates without SSL
I want to use x.509 certificates for authentication against a EP 7.0 but I dont want to have SSL traffic on the network segment where the portal resides. Obviously the SSL must be terminated in an application gateway that sends the certificate to the portal in the header.
I know that AcceptClientCertWithoutSSL must be set to true in the http provider and that ClientCertificateHeaderName is the name of the header variable that contains the users certificate, default is SSL_CLIENT_CERT.
What I dont know is how to configure my JAAS login module stack, my suggestion would be this:
EvaluateTicketLoginModule SUFFICIENT {ume.configuration.active=true}
ClientCertLoginModule OPTIONAL {Rule1.getUserFrom=SSL_CLIENT_CERT}
CreateTicketLoginModule SUFFICIENT {ume.configuration.active=true}
BasicPasswordLoginModule REQUISITE {}
CertPersisterLoginModule OPTIONAL {Rule1.getUserFrom=SSL_CLIENT_CERT}
CreateTicketLoginModule SUFFICIENT {ume.configuration.active=true}
My concern is does the ClientCertLoginModule and the CertPersisterLoginModule read from the header variable? If they dont, is there another login module that should be used in this case?Hi Claus,
you got the flags right but the options of the login modules (LM) are wrong, so the certificate authentication won't work.
There's two problems I see: (1) Rule1.getUserFrom is not a valid option for the LM CertPersisterLoginModule, and (2) SSL_CLIENT_CERT is not a valid value for the option Rule1.getUserFrom of the ClientCertLoginModule.
Looking at this topic:
http://help.sap.com/saphelp_nw2004s/helpdata/en/ea/301e3e6217b40be10000000a114084/content.htm
the header variable used to pass the certificate is maintained in the HTTP provider service properties but since you use the default you don't need to maintain that part of the config. You also don't need the CertPersisterLoginModule in the config because it is used for automatic certificate mapping, which doesn't work when you don't have SSL to the portal.
So with the above said your LM stack config should look like this:
EvaluateTicketLoginModule SUFFICIENT {ume.configuration.active=true}
ClientCertLoginModule OPTIONAL {Rule1.getUserFrom=wholeCert}
CreateTicketLoginModule SUFFICIENT {ume.configuration.active=true}
BasicPasswordLoginModule REQUISITE {}
CreateTicketLoginModule SUFFICIENT {ume.configuration.active=true}
If this doesn't work I'd suggest opening a support ticket.
Regards,
Yonko -
How to create new Custom XML Report without using Form Builder
Hi,
What are the steps to create new Custom XML Report without using Report Builder ?
Thanks and Regards,
AbhiHi,
Steps we now follow
1)Create Data Model in Reports Builder
2)Create xml
3)Insert xml in Publisher to build Fomat
4)FTp rdf
5)Create Data Definition and Template
6)Create executable and Concurrent Program
Is there any way we can build reports without use of Report Builder ? By writing PL SQL Package for Before Report and After Report etc ...
Thanks and Regards,
Abhijit Rode -
I have installed MultiSim 9.0.41 has been installed on four workstations. The PCs reside within a local domain with ten users. The domain resides within the greater university domain, is technically not configured as a true subdomain, but it has access to university domain resources (such as the license server). We have SSO (remote profiles) functionality enabled.
MultiSim runs with without problems for admin users. We start having issues with nonadmin users. I series of pop-up messages appear when the program is launched:
"The Microsoft Jet database engine can not open the file C:\Program Files\Electronics Workbench\EWB9\database\mscomp_s.prd. It is already opened exclusively by another user, or you need permission to view its data."
"The Microsoft Jet database engine can not open the file C:\Program
Files\Electronics Workbench\EWB9\database\CPCOMP_S.PRJ. It is already
opened exclusively by another user, or you need permission to view its
data."
"Error loading library C:\Program
Files\Electronics Workbench\EWB9\PCBComponentEdit.dll, ('998') Invalid access to memory location."
"The Microsoft Jet database engine can not open the file C:\Program
Files\Electronics Workbench\EWB9\database\mscomp_s.prd. It is already
opened exclusively by another user, or you need permission to view its
data. Error Code:3051"
Solutions attempted (without success):
- Update program (no updates found via update manager or NI site)
- Run program as admin
- Give all users full permissions to program files (major security risk)
- Change "Directory for EWB Shared Components" to public shared drive. Interestingly, MultiSim shows the network drive as unwritable (though it clearly is).
Any ideas? Are there updates that fix this issue? Is this solved by the newest version? What do I need to do differently to ensure that user config files are saved in their roaming profiles vs. locally (note: I have already tried to correct the paths during install and post-install without success).
Thanks!
Message Edited by refriend on 05-22-2008 02:26 PMHi Refriend,
The error message indicates Multisim is not able to read/write to the database folder. Please have a look at the following knowledge base article for instructions to correct the database problem.
http://digital.ni.com/public.nsf/allkb/B06773CE511C7E588625720B00502B8E
Multisim 9, you need to setup the permission for the database manually but in version 10, this step is not required. As for saving user config file as part of the roaming profile, this option is not available. Multisim will always look in the locale drive for the config file and if one does not exist it will create one for that user and save it locally.
Tien P.
National Instruments -
Failed Calling A X.509 Certificate Secured Web Service From OSB
Hi,
I have wsdl resource, business service and proxy service setup in OSB 11.1.1.6 on Linux. The business service will consume a X.509 certificate secured web service running on a remote server.
Below is my approach:
The consumer of the proxy service of OSB signs its saop request header.
My OSB proxy service authenticates the signature and forward the request to business service.
The business service signs the outbound soap request header. (To do this I configured the keystore in Security Provider Configuration of my SOA_domain in Enterprise Manager. Also I applied Web Service Policy of Service Client type to the business service.)
This is not working yet. Not sure if my approach is correct or not?
Thank you,
EricI validated the keystore, all the certificates used and the value for keystore.sig.csf.key / value for keystore.recipient.alias. They are all as expected. Restarted the server. Still failed for OSB to invoke the remote secured web service, but worked if only use soapUI to invoke the same remote secured web service directly.
The error message is:
General security error (WSSecurityEngine: No crypto property file supplied for decryption); nested exception is org.apache.ws.security.WSSecurityException: General security error (WSSecurityEngine: No crypto property file supplied for decryption)
In the soap request / reponse message shown in the OSB Test Console, there seems to be two signature sections in the header and encryption section although I tried not to encrypt the soap request. I am using Web Service Client Policy "calpers/wss11_x509_token_with_message_integrity_client_policy_osb" which was created based on "oracle/wss11_x509_token_with_message_protection_client_policy". The difference between the two policies is my policy not to sign nor to encrypt entire body.
In the "Message Signing Setting" section, I unchecked the "Include Entire Body" and left the three default namespaces under the Header Elements.
In the "Message Encrypt Setting" section, I unchecked the "Include Entire Body" and also left the one default namespace under the Header Elements.
I don't know how to attach document here, so i add long saop message here.
Business Service Testing - BookSec_Biz_Svc_52
Request Document
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soap:Header xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
</soap:Header>
<soapenv:Body>
<book:BookRequest xmlns:book="http://www.dortman.com/books/BookService">
<book:bookId>10</book:bookId>
<book:bookTitle>eric</book:bookTitle>
<book:bookAuthor>Z</book:bookAuthor>
</book:BookRequest>
</soapenv:Body>
</soapenv:Envelope>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soap:Header xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
<wsse:Security soap:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
<wsu:Timestamp wsu:Id="Timestamp-eEud1RcUOPcnV0fDqd6gZQ22" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<wsu:Created>2013-03-14T18:10:00Z</wsu:Created>
<wsu:Expires>2013-03-14T18:15:00Z</wsu:Expires>
</wsu:Timestamp>
<wsse:BinarySecurityToken ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" wsu:Id="BST-VnzMtSwHMI8THKi2hhG2SQ22" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
MIICazCCAdSgAwIBAgIEUTY65zANBgkqhkiG9w0BAQUFADB6MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxEzARBgNVBAcTCk1ldHJvcG9saXMxFjAUBgNVBAoTDUp1c3RpY2UgTGVhZ2UxFjAUBgNVBAsTDUp1c3RpYyBMZWFndWUxEzARBgNVBAMTCkNsYXJrIEtlbnQwHhcNMTMwMzA1MTgzNTE5WhcNMTMwNjAzMTgzNTE5WjB6MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxEzARBgNVBAcTCk1ldHJvcG9saXMxFjAUBgNVBAoTDUp1c3RpY2UgTGVhZ2UxFjAUBgNVBAsTDUp1c3RpYyBMZWFndWUxEzARBgNVBAMTCkNsYXJrIEtlbnQwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJhF0cMUwB/EjAyIOy9Cq8KCDqTXvlnlvMGq6LEhiGOtrATYy+JnHURcPUeusi65Ua3bE7JACWhHJ0fYEl7NtxPPSN3Q1RovkWGQ6I5O2XuEyMHg3MISh2CHhnkGSR+W6riDSUoB0ZC0KTgu14OTwqo54JSY/ugQszY7QC9DAuabAgMBAAEwDQYJKoZIhvcNAQEFBQADgYEAWeQ6LjMo12bY65GmnrmLdbRNm95RkL6gJCKa9pyUaMfvaIqKpmMQW8RM+eB90CR5DrM8oO2+8uKcqTt/pGNRYi2UJh2X0CdmyQQTmf3mCfgoZ597VTl+k3mKHKeeST7ZwAyBRL2jI0VisopFHpUhIwABoDgwOMpLcCF974AZ2rA=
</wsse:BinarySecurityToken>
*<dsig:Signature* Id="XSIG-oISn2AADumTdR86sONuz8g22" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
<dsig:SignedInfo>
<dsig:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<dsig:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/>
<dsig:Reference URI="#Timestamp-eEud1RcUOPcnV0fDqd6gZQ22">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<dsig:DigestValue>3LQ1IpQR3rKHvP6Ov/m9ZRoecZM=</dsig:DigestValue>
</dsig:Reference>
</dsig:SignedInfo>
<dsig:SignatureValue>X2BUn9TLL26Ay9A3HGEn/mnGCCE=</dsig:SignatureValue>
<dsig:KeyInfo>
<wsse:SecurityTokenReference>
<wsse:Reference URI="#EK-h7saqC1VyBKZw2n1IHz8GQ22" ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKey"/>
</wsse:SecurityTokenReference>
</dsig:KeyInfo>
+*</dsig:Signature>*+
*<dsig:Signature* xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
<dsig:SignedInfo>
<dsig:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<dsig:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<dsig:Reference URI="#BST-VnzMtSwHMI8THKi2hhG2SQ22">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<dsig:DigestValue>dau9qjB2lxIvlaoDIHuWVHqjulI=</dsig:DigestValue>
</dsig:Reference>
<dsig:Reference URI="#STR-QC3ZDBRwsXv8unEWVns9rQ22">
<dsig:Transforms>
<dsig:Transform Algorithm="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#STR-Transform">
<wsse:TransformationParameters>
<dsig:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</wsse:TransformationParameters>
</dsig:Transform>
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<dsig:DigestValue>nPO9mKSC9cMg2fEkGZI+ujy5O1Q=</dsig:DigestValue>
</dsig:Reference>
<dsig:Reference URI="#XSIG-oISn2AADumTdR86sONuz8g22">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<dsig:DigestValue>qXkW/ZFFNc8Bu0VL9eF6c4np7IA=</dsig:DigestValue>
</dsig:Reference>
</dsig:SignedInfo>
<dsig:SignatureValue>
MuHCTh5cW8TiVKtkWFl+Of2EFAiHwuPTR7J9b4/n2KZtPy2OCrgi1lBpuzhFKLhoBxYNOK8TMOa/3b223Vv+CQUfUP7z0YVj5Ck7QETYngaQlS07KulnstJjsAgHBV8Zk3A0EafuWF2c3t5wBzEkgEC99v0EdY3mRiCzt7vh2qs=
</dsig:SignatureValue>
<dsig:KeyInfo Id="KeyInfo-0LT1QavoIVXOHesZfrxTwg22">
<wsse:SecurityTokenReference>
<wsse:Reference URI="#BST-VnzMtSwHMI8THKi2hhG2SQ22" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
</wsse:SecurityTokenReference>
</dsig:KeyInfo>
+*</dsig:Signature>*+
*<xenc:EncryptedKey* Id="EK-h7saqC1VyBKZw2n1IHz8GQ22" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"/>
</xenc:EncryptionMethod>
<dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference wsu:Id="STR-QC3ZDBRwsXv8unEWVns9rQ22" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<wsse:KeyIdentifier ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#ThumbprintSHA1" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">q9Z9yPxvNw4CvSLQNI4rxVlSF+w=</wsse:KeyIdentifier>
</wsse:SecurityTokenReference>
</dsig:KeyInfo>
<xenc:CipherData>
<xenc:CipherValue xmime:contentType="application/octet-stream" xmlns:xmime="http://www.w3.org/2005/05/xmlmime">
Tgdhxy6wMJBBrw23iq1GLCm0TYKBXSVQvBcN+7TXdXL6FPSjhcbfXqtoz7wzirbSwUZuu+DrYuWs
0BjRXqw3auUSCMlkm4IoT1ag3wFQQ/PEbB8HNlYhW3gp/At3toTw+k5p9wOUd4BMFAiXyeHQ8+dQ
8JUiohXhiHErTDn6fFQ=
</xenc:CipherValue>
</xenc:CipherData>
</xenc:EncryptedKey>
</wsse:Security>
</soap:Header>
<soapenv:Body>
<book:BookRequest xmlns:book="http://www.dortman.com/books/BookService">
<book:bookId>10</book:bookId>
<book:bookTitle>eric</book:bookTitle>
<book:bookAuthor>Z</book:bookAuthor>
</book:BookRequest>
</soapenv:Body>
</soapenv:Envelope>
Response Document
The invocation resulted in an error: Internal Server Error.
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soapenv:Body>
<soapenv:Fault>
<faultcode>soapenv:Client</faultcode>
<faultstring xmlns:lang="en">
General security error (WSSecurityEngine: No crypto property file supplied for decryption); nested exception is org.apache.ws.security.WSSecurityException: General security error (WSSecurityEngine: No crypto property file supplied for decryption) </faultstring>
</soapenv:Fault>
</soapenv:Body>
</soapenv:Envelope>
Response Metadata
<con:metadata xmlns:con="http://www.bea.com/wli/sb/test/config">
<tran:headers xsi:type="http:HttpResponseHeaders" xmlns:http="http://www.bea.com/wli/sb/transports/http" xmlns:tran="http://www.bea.com/wli/sb/transports" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<tran:user-header name="Accept" value="text/xml"/>
<tran:user-header name="Expires" value="Thu, 14 Mar 2013 18:10:01 GMT"/>
<tran:user-header name="SOAPAction" value=""""/>
<http:Cache-Control>max-age=0</http:Cache-Control>
<http:Connection>close</http:Connection>
<http:Content-Type>text/xml; charset=UTF-8</http:Content-Type>
<http:Date>Thu, 14 Mar 2013 18:10:01 GMT</http:Date>
<http:Server>Apache</http:Server>
<http:Transfer-Encoding>chunked</http:Transfer-Encoding>
</tran:headers>
<tran:response-code xmlns:tran="http://www.bea.com/wli/sb/transports">2</tran:response-code>
<tran:response-message xmlns:tran="http://www.bea.com/wli/sb/transports">Internal Server Error</tran:response-message>
<tran:encoding xmlns:tran="http://www.bea.com/wli/sb/transports">UTF-8</tran:encoding>
<http:http-response-code xmlns:http="http://www.bea.com/wli/sb/transports/http">500</http:http-response-code>
</con:metadata> -
Displayed a message box then removed it by a program without user action
Can a message box be displayed by a program and then removed by the program without any user action such as clicking OK or closing the box?
If so, will you show us how to do that?
I have a non-GUI application which needs to tell the user to wait while classes and being created and data is being loaded from the network. The message needs to disappear when the program is ready.
Thanks!Here is an example of using the JDialog you will have to make it look like you want I just pieced this together real quick
import javax.swing.*;
public class test extends Object
public test()
longOperation();
System.exit(0);
public void longOperation()
JDialog dialog = new JDialog();
dialog.getContentPane().add(new JLabel("Wait"),java.awt.BorderLayout.CENTER);
dialog.setSize(200,200);
dialog.setVisible(true);
// used to simulate a long operation
Thread t = Thread.currentThread();
try
t.sleep(2000);
}catch(Exception e){}
dialog.dispose();
public static void main(String args[])
new test();
} -
APDU for X.509 Certificate
Would like to understand APDU commands necessary to read X.509 Certificate from CAC card. Have ActivCard document describing "PKI Applet Specification", and believe I must first perform "Install" (CLA:84, INS:E6) then "PIN Verify" (CLA:80, INS:20) then presumably can read EF 02FE, which is the certificate.
My implementation of "Install", only using "make selectable", returns 6985, "conditions of use not satisfied".
And my implementation of "PIN Verify" returns 6D00, "unknown instruction given in the command".
Any sample APDU code for getting the X.509? Thanks.I have the ActivCard SDK, and I have run their acbsi_sample.exe program, which reasonably interacts with a Navy issued CAC card, for which I know the PIN.
Even with the SDK, which implements BSI, I remain ignorant of how to verify PIN and then read the X.509 Certificate. The demo program has no option to do either.
I am quite aware of the GSCISV2-0.pdf document. It identifies the CAC RID as A000000079 and the "PKI Certificate Container" as FID 02FE.
Using the ActivCard BSI demo program, I can interrogate that AID but cannot access any tag, all attempts to "read data value" returning "data value length: 0". Furthermore, as stated above, I see no way to verify PIN, and the GSCISV2-0.pdf clearly states that access to the "PKI Certificate Container" is "PIN always".
Would be most grateful for any assistance you can provide. -
Getting error while trying to create the push certificate...
I am getting the following error while trying to create a push certificate for the mdm from the apple site.
Certificate Signature Verification failed because the signature is invalid.
I am mdm vendor as well as the customer. I did the following steps.
openssl x509 -inform der -in mdm_identity.cer -out mdm.pem
openssl x509 -inform der -in AppleWWDRCA.cer -out intermediate.pem
openssl x509 -inform der -in AppleIncRootCertificate.cer -out root.pem
openssl req -inform pem -outform der -in customer.csr -out customer.der
created the plist_encoded file using a java program which uses the "SHA1WthRSA"
When i tried to upload the plist_encoded file to the apple site (https://identity.apple.com/pushcert/), it creates a file with the following error
{"ErrorCode":-80018,"ErrorMessage":"Certificate Signature Verification failed","ErrorDescription":"Certificate Signature Verification failed because the <a href=\"http://www.apple.com/business/mdm\" target=\"_blank\">signature<\/a> is invalid."}
Any help would be greatly appreciated....Please see the solution in (The Descriptive Flexfield With Application Name Receivables (AR) and Name Party Site Information (HZ_PARTY_SITES) Is Not Frozen [ID 743262.1]).
Thanks,
Hussein -
M7279- Data for creating a delivery is incomplete (Vendor)
Dear All,
i am getting below error while processing Goods receipt.
"M7279- Data for creating a delivery is incomplete (Vendor)"
1.I am doing Goods receipt with mvt type 521( GR without ref to prod order).
2.storge location is WH manged + HU managed.
3.Material master is assinged with sales org / distribution channel- sales view.
4.maintained for Transportation Group . loading group - sales gen/plant data.
5. Maintaine for shipping data for Storage location ( customisation -SPRO-LE-Shipping-Basic shipping function- Shipping points and goods receiving points determination-Assign goods receiving points for Inbound Deliveries.)
6. HUM- setting - LG-HUM-HU requirement for storage location and default values for deliveries)
Why system is thowing this error message as in my case vendor does not comes in to picture ( I can cosider if a GR is with refence to PO , in that case in customer master number has to be maintained in vendor master + shipping condition entered in customer master)
Could you pl help me on above ( as this is 521 movement , it should not have any link with vendor or customer master) then why i am getting this error.
Appreciate your earliest response.
OmI am doing simple goods receipt without reference to any document ( mvt 521 - goods receipt without ref to production order) , in that case it should not ask for any vendor or should not search for vendor code , i am not getting why it is searching for vendor.
If i removed the setting related to HU management for storage location then it allows me to post the document without any error, but if i activate for HU managment in below path i am getting error ( even in below path if i entered any vendor code then it allows me to post the document)
Logistics general- Handling unit management- basics-materials management - inventory management -HU requirement for storage location and default values for deliveries
plant Storage location Partner storage location Sal org Dist chan shipping division vendor customer HU requred
05 ZBD1 ZPK1
in above if i entered any vendor code then it allows me to post the doc but i remove it then i am getting above error.
If there any alternative or other setting to overcome this error.
Thanks
Om -
ABAP OO: Duplication of selected data in created objects?
I am new to ABAP OO and I have a conceptual question/concern that I cannot resolve. Can someone explain what I am missing?
I would think that selecting and storing (in internal tables) a large amount of data from many related database tables and, at the same time, creating and storing objects from this same data would unnecessarily consume a huge amount of memory. To avoid this problem, it seems that the selected data and created objects should not be stored in internal tables simultaneously.
Does this concern make sense? If so, how is this problem best handled?
Does it make sense to delete the corresponding data once the objects are created (to free memory)?
Or does it make sense to keep the data and only temporarily create objects as needed?
Thanks.Hello Matt
The approach you describe is to select data first and the feed the object instances with them. <b>Why not let the object instances do the data selection themselves?</b>
I will give you an example what I mean.
(1) Lets assume I want to write an application that allows to deal with cost center hierarchies. On the selection screen you can choose one or many cost center hierarchies.
(2) Using the selection criteria I would select all cost center hierarchies but without any details (just the key values).
(3) Next I would loop over the cost center hierarchies and create a cost center hierarchy instance (a class you have to define yourself) for each key value. The CONSTRUCTOR of this class will have an IMPORTING parameter like <i>id_kostl_hier</i>.
(4) In the CONSTRUCTOR method I first check if the cost center hierarchy exists (if not raise an exception-class based exception) and then do the selection of the hierarchy details (e.g. the cost centers).
(5) The instances are collected in an itab of the "frame" application.
Using this approach you will have little duplication of data within your application. Furthermore, if you really have to deal with huge amounts of data then you could read them only on demand (like in tree controls where the sub-nodes usually are read when the parent node is expanded).
Hope I could give you some fresh insights into this exciting topic.
Regards
Uwe -
I need an uncompressed file so I can use the resulting PDF to do a find/replace. Can't do it with compression.
Thanks
JDRHC1115Dave,
Thanks for the reply. Of all the suggestions I've received this seemed to
be most promising. I gave it a try and the problem is that when I attempt
to save as optimized a message box pops up and says I have to save my
document first. Low and behold when I save it, compression occurs. Even
when I select the options you suggest I'm left with a compressed document.
I'm using Acrobat Pro X
Jeff
From: Dave Merchant <[email protected]>
To: Jeff Ross <[email protected]>
Date: 01/06/2011 09:35 AM
Subject: Is it possible to create and save a .PDF
without any compression to the resulting .PDF?
You don't want the UncompressPDF plugin - that's designed to split out the
COS objects but doesn't remove the Flate encoding (plus if you've never
compiled a plugin before, it's not really the time to learn).
Instead, simply save your PDF file using the PDF (Optimized) file type,
click the Settings button and under "Clean Up" - "Object compression
options", choose "Remove compression". Turn everything else off if you
want to retain the PDF content exactly as it was before.
Your document-level scripts will then be in the file as plain text. -
How to create a module pool program
Dear Guru
I want to know know how to create a module pool program from se80 step by step. I want to know the steps where i will get the four includes like form routines, PAI, PBO, and global data please its very urgent.
Thanks & regards
Saifur Rahamanhi Saifur Rahaman,
goto se80 then click find program,
next u want any name of the program enter as,
Attribute type as find Module pool click it.
next u want any package and save and activate.
program name with create screen with any number then
click layout and u want any object and save , actived.
click flow logic , four types as PBO and PAI and POV, POH.
PBO---> Trigger is before screen.
its applied for display screen and inactive or no display screen only
PAI--->Trigger is after screen
when u want button then its processed.
POV--> Value requested for F4.
POH-->Help requested for F1.
Reward if useful,
S.Suresh.
Maybe you are looking for
-
AVCHD in Ae CS5 is a sad joke.
Ok! AVCHD footage is playing perfectly in Premiere cs5 due to Mercury. But no Mercury in AE C5 makes scrubbing the CTI such a difficult task! And don't think my 8 core workstation is to blame. The strange thing is that RAM preview is reeealy fast!
-
Planing connection for FR..
Hi all, I am creting a planning connection in FR to show cell text and supporting details entered, but it is giving me error while creating a planning connection. *"Error connecting to database connection support1: Error: Error getting CSS support in
-
How to remove frame from numeric indicator? I tried in "Modern" but cannot get rid of the frame. There is "System" indicator but I cannot change the background color to match vi's background. Any ideas? I put picture of what I need. Thanks, Zoran S
-
Cannot find the DAQ Assistant Express vi on LabVIEW
I am using LabVIEW 8.6.1, and doing the lesson 8 from LabVIEW Basics I Intro manual. LabVIEW Intermediate I level! Solved! Go to Solution.
-
OD SSL (Client Binding Issues)
Hi, I am having issues binding my client machines to my server. My OD has a SSL which is a standard UCC SSL, when I connect my clients it asks me if I want to trust the server I say yes then it finishes binding. I then look and see a red dot next to