Help with expiring Default certificate

I need some help, I'm not sure how to go about reactivating or extending this certificate... I am getting this message:
+The following certificate is about to expire on your server, (servername):+
+ +
+ Name: Default+
+ Expiration Date: 2009-12-16 18:34:33 -0500+
My question is, do I delete this Default cert and make a new one called the same name, or...?
Thanks in advance.
Message was edited by: ekal

Hi,
You can’t “edit” the existing cert anymore.
You have to delete your expired (or soon to expire) cert if the new cert will be for the same host name, which is likely else you’ll get an error about it already existing in the chain. Just go to the certificate window, press the + and select “create a certificate identity”. Use the fully qualified domain name that matches the service or purpose of the cert and host. This will create a new self signed cert that is good for one year by default. If you want to create a cert with a different expiration date (more than 365 days), you must check the box to override defaults or something alone those lines when you’re creating the cert. That part is pretty self explanatory.
I’m not sure if clients will have to “trust” the “new” self signed cert each time you do this. I don’t have time to test that as I was just looking at this during a meeting :P Not sure if you have to “repoint” your services to the new cert either but that’s fairly trivial even if you must do so. I assume you don’t have to though as long as the cert name remained the same and continues to match.

Similar Messages

  • Help with expiring client scope

    Hi,
    I have a website that uses the client scope for its shopping cart. Im having a problem with expiring the client scope. What happens is when I make changes to the site that effect cookies, people who havce old cookies or client on there system get an error message and I for the life of me cannont figuer out a way to have the scope say expire when they leave the page or close the browser.
    THanks for any help.
    Mike.

    Well, the web being stateless, it's not easy to auto-logout if a person just 'leaves' your website - the server just doesn't know they've gone.  If they actually 'log out'  you 'could' clear all their cookies using the cookie scope, but other than that maybe set a short expire on the client scope so that if a person does leave your site it won't be long before they time out and have to get new client vars next time.
    By the way, the client scope is not encouraged by Adobe (or so I seem to remember in the past).  Is there any reason you need to use it?  Would the session scope be more suited?  I KNOW it's faster, but not persistent unless you serialise the session scope via wddx (which you can do - emulating client scope when needed).

  • Digital Signature validation with expired TSA certificate

    Hi,
    I used Adobe Acrobat 8.2 to sign a PDF document with "certifying signature" (note: not approval signature) using a self-signed certificate and a remote TSA.  I did NOT embed long term validation information as described here
    http://help.adobe.com/en_US/Acrobat/9.0/Standard/WS934c23d7cc8877da1172e0811fde233c98-8000 .html
    The TSA certificate expired on a few days ago and now I am getting "not time valid" error on the TSA certificate (see attached mage)
    The signature validates fine since I get the ribbon icon at the top for certified document as described here:
    http://www.adobe.com/devnet/acrobat/pdfs/validation_cheat_sheet.pdf
    The problem is that I don't get the Clock symbol on the timestamp because Signature Properties says
    "signature is timestamped but timestamp could not be verified"
    The trust settings for all certificates are fine.
    I also changed "Verification Time" in Edit-->Security-->Advanced preferences to be "Time signature was created".
    I validated the signature using Adobe Reader 8 as well as 9 and got the same error.
    What am I doing or expecting that is wrong ?
    Appreciate any help!

    Thanks.  That worked!   Back in the sunshine again
    The message is as seen below : "signature is timestamped but TS has expired"
    I am assuming this is the right message.  If not, do respond.

  • Help with X.509 certificate instalation

    Hi all..
    We had exported a X.509 certificate from a https site form one of our vendors...
    then we imported this file using the keytool command as shown...
    keytool -import -alias [AliasgoesHere] -file /tmp/[filename].cer -keystore ticketKeyStore -storepass [mypassword]
    Then in the VA we uploaded it into the TrustedCAs.
    However, when we run a webservice that shall use this certificate we are receiving the error... "unknown certificate"
    Anyone know if we are missing any steps???

    Hi Kerubon,
    you will need the following JAR-Files to resolve the imports (only at development time):
    - keystore_api.jar
    - tc_sec_ssf.jar
    For runtime you define the following sharing references if you do not want to deploy the jars with your application (SAPJ2EE::interface:keystore_api, SAPJ2EE::library:security.class)
    Here's the code:
    try {
      // get profile from keystore service of J2EE engine
      InitialContext ctx = ctx = new InitialContext();
      Object o = (Object) ctx.lookup("keystore");
      KeystoreManager manager = (KeystoreManager) o;
      KeyStore ks = manager.getKeystore("DEFAULT");
      String alias = "TEST-cert";
      SsfProfileKeyStore profile = new SsfProfileKeyStore(ks, alias, null);
      // Here you can fetch the certificate from the profile or do stuff with your certificate
      String SubjectDN = profile.getCertificate().getSubjectDN().getName();
    } catch (Exception Ex) {
      Ex.printStackTrace();
    Make sure you access the DEFAULT Keystore so you won't get into trouble with permissions (I suggest you store your certificates in DEFAULT)
    Note that when creating a certificate you will mostly get 2 entries (PRIVATE KEY and certificate entry). Make sure that for alias you use the name of the PRIVATE KEY entry that also contains the certificate!
    Hope this helps (Please reward points if helpful)
    Cheers

  • Help with OIE - Default Project Expenditure Organization based on Task

    Hi,
    I am extending OAF page in OIE and based on Task selected by user, Project Expenditure Organization has to be defaulted.. Page uses OAHGridBean, I tried to use OAHGridQueriedRowEnumerator, but OAHGridBean is always null..
    OAHGridBean localOAHGridBean = (OAHGridBean)paramOAWebBean.findIndexedChildRecursive("HeaderNodeRN");
    if (localOAHGridBean != null){
    OAHGridQueriedRowEnumerator enum1 = new OAHGridQueriedRowEnumerator(paramOAPageContext, localOAHGridBean);
    I tried to use vo.getCurrentRow(), but it is always null..
    Any pointers on how this can be resolved would be highly appreciated..
    Also following is the XML ..
    <?xml version='1.0' encoding='UTF-8'?>
    <oa:hGrid shortDesc="Additional Text" controllerClass="oracle.apps.ap.oie.entry.accounting.webui.AllocationsHGridCO" version="9.0.3.8.13_1550" xml:lang="en-US" xmlns:oa="http://xmlns.oracle.com/oa" xmlns:jrad="http://xmlns.oracle.com/jrad"
    xmlns:ui="http://xmlns.oracle.com/uix/ui" xmlns:user="http://xmlns.oracle.com/jrad/user" xmlns="http://xmlns.oracle.com/jrad" file-version="$Header: AllocationsHGridRN.xml 120.8.12010000.2 2008/08/06 07:33:51 rveliche ship $">
    <ui:contents>
    <oa:switcher id="ErrorExistsSwitcher" viewAttr="ErrorExistsSwitcher" prompt="Error" rendered="${oa.ExpenseAllocationsPVO.AllocationsHGridErrorColRender}">
    <ui:case name="ErrorExists">
    <oa:image id="ErrorExists" source="erroricon_active.gif" warnAboutChanges="false" destination=""/>
    </ui:case>
    <ui:case name="ErrorDoesNotExist">
    <oa:messageStyledText id="ErrorDoesNotExist" warnAboutChanges="false" destination=""/>
    </ui:case>
    </oa:switcher>
    <oa:tree id="HeaderNodeRN" usage="hGrid" text="Line">
    <members>
    <oa:nodeDef id="HeaderLine" viewName="AllocationsHeaderVO" viewAttr="Line" shortDesc="Additional Text"/>
    <oa:childNode id="LineNodeRN" viewLink="" viewLinkAccessorName="LinesAccessor">
    <members>
    <oa:nodeDef id="LineLine" viewName="AllocationsLinesVO" viewAttr="Line"/>
    <oa:childNode id="DistributionNodeRN" viewLinkAccessorName="">
    <members>
    <oa:nodeDef id="DistributionLine" viewName="ExpenseAllocationsVO" viewAttr="Line"/>
    </members>
    </oa:childNode>
    </members>
    </oa:childNode>
    </members>
    </oa:tree>
    <oa:messageStyledText id="ReportLineId" prompt="Report Line ID" adminCustomizable="false" viewName="AllocationsHeadersVO" viewAttr="ReportLineId" dataType="NUMBER" rendered="false"/>
    <oa:messageStyledText id="ReportDistributionId" prompt="Report Distribution ID" adminCustomizable="false" viewName="AllocationsHeadersVO" viewAttr="ReportDistributionId" dataType="NUMBER" rendered="false"/>
    <oa:messageStyledText id="PaymentMethod" viewName="AllocationsHeaderVO" viewAttr="ChargeType" prompt="Payment Method"/>
    <oa:flowLayout id="DateColumn" prompt="Date" cellNoWrapFormat="true">
    <ui:contents>
    <oa:messageStyledText id="Date" viewName="AllocationsHeaderVO" viewAttr="Date" prompt="Date" shortDesc="Date"/>
    </ui:contents>
    </oa:flowLayout>
    <oa:flowLayout id="ExpenseTypeLayout" prompt="Expense Type" cellNoWrapFormat="true">
    <ui:contents>
    <oa:image id="ChangedItemIcon" prompt="" shortDesc="Indicates changed items" styleClass="p_OraRequired" source="/OA_MEDIA/changeditemicon_status.gif" imageHeight="16" imageWidth="16" rendered="${oa.AllocationsHeaderVO.ExpTypeChangedRender}"
    adminCustomizable="false"/>
    <oa:messageStyledText id="ExpenseType" prompt="Expense Type" viewName="AllocationsHeaderVO" viewAttr="ExpenseType"/>
    </ui:contents>
    </oa:flowLayout>
    <oa:flowLayout id="ReceiptAmtColumn" prompt="Receipt Amount" cellNoWrapFormat="true">
    <ui:contents>
    <oa:image id="AmtChangedIcon" prompt="" shortDesc="Indicates changed items" styleClass="p_OraRequired" source="/OA_MEDIA/changeditemicon_status.gif" imageHeight="16" imageWidth="16" rendered="${oa.AllocationsHeaderVO.AmtChangedRender}"
    adminCustomizable="false"/>
    <oa:messageStyledText id="ReceiptAmt" dataType="NUMBER" viewName="AllocationsHeaderVO" viewAttr="StringReceiptAmount" prompt="Receipt Amount"/>
    </ui:contents>
    </oa:flowLayout>
    <oa:messageStyledText id="ReimbursementAmt" viewName="AllocationsHeaderVO" viewAttr="StringReimbursementAmount" prompt="Reimbursement Amount" dataType="NUMBER"/>
    <oa:messageStyledText id="Merchant" viewName="AllocationsHeaderVO" viewAttr="MerchantName" prompt="Merchant"/>
    <oa:messageStyledText id="Location" viewName="AllocationsHeaderVO" viewAttr="Location" prompt="Location"/>
    <oa:switcher id="AllocationReasonSwitcher" prompt="Allocation Reason" viewName="AllocationsHeaderVO" viewAttr="RenderAllocationReason" rendered="false">
    <ui:case name="Y">
    <oa:messageTextInput id="Y" viewName="AllocationsHeaderVO" viewAttr="AllocationReason" prompt="Allocation Reason" rendered="true" readOnly="false" columns="30"/>
    </ui:case>
    <ui:case name="READ_ONLY">
    <oa:messageStyledText id="READ_ONLY" viewName="AllocationsHeaderVO" viewAttr="AllocationReason" prompt="Allocation Reason" rendered="true"/>
    </ui:case>
    </oa:switcher>
    <oa:messageStyledText id="Justification" viewName="AllocationsHeaderVO" viewAttr="Justification" prompt="Justification" userCustomizable="true"/>
    <oa:messageStyledText id="ProjectsEnabled" viewName="AllocationsHeaderVO" viewAttr="ProjectsEnabled" adminCustomizable="false" prompt="Projects Enabled" rendered="false"/>
    <oa:stackLayout id="ProjectLayout" extends="/oracle/apps/ap/oie/entry/accounting/webui/ProjectLayoutRN" prompt="Project" rendered="false"/>
    <oa:stackLayout id="TaskLayout" extends="/oracle/apps/ap/oie/entry/accounting/webui/TaskLayoutRN" prompt="Task" rendered="false"/>
    <oa:stackLayout id="AwardLayout" extends="/oracle/apps/ap/oie/entry/accounting/webui/AwardLayoutRN" prompt="Award" rendered="false"/>
    <oa:switcher id="ExpenditureOrg" extends="/oracle/apps/ap/oie/entry/accounting/webui/ProjExpendOrgSwitcherRN" prompt="Project Expenditure Organization" rendered="false"/>
    <oa:formValue id="Kff" viewName="AllocationsHeaderVO" rendered="false"/>
    <oa:switcher id="RemoveSwitcher" extends="/oracle/apps/ap/oie/entry/accounting/webui/RemoveSwitcherRN"/>
    <oa:formValue id="ProjectId" viewAttr="ProjectId"/>
    <oa:formValue id="TaskId" viewAttr="TaskId"/>
    <oa:formValue id="AwardId" viewAttr="AwardId"/>
    <oa:formValue id="ProjectExpendOrgId" viewAttr="ProjectExpendOrgId"/>
    </ui:contents>
    <ui:tableSelection>
    <oa:multipleSelection id="multipleSelectionRN" viewName="AllocationsHeaderVO" viewAttr="Select" shortDesc="Select Expense Lines:">
    <ui:contents>
    <oa:selectionButton id="UpdateAllocations" text="Update Allocations">
    <ui:primaryClientAction>
    <ui:fireAction/>
    </ui:primaryClientAction>
    </oa:selectionButton>
    <oa:selectionButton id="Revert" text="Revert" shortDesc="Default line to original settings.">
    <ui:primaryClientAction>
    <ui:fireAction event="clicked"/>
    </ui:primaryClientAction>
    </oa:selectionButton>
    <oa:selectionButton id="MyAllocationsItem" text="My Allocations"/>
    <oa:selectionButton id="MyAllocationsApply" text="Apply" shortDesc="Apply an allocation to selected expense lines.">
    <ui:primaryClientAction>
    <ui:fireAction/>
    </ui:primaryClientAction>
    </oa:selectionButton>
    </ui:contents>
    </oa:multipleSelection>
    </ui:tableSelection>
    </oa:hGrid>
    Thank you.
    Vasu.

    Hi Anil,
    I changed the as suggested by you ..
    OAHGridBean localOAHGridBean = (OAHGridBean)paramOAWebBean.findChildRecursive("HeaderNodeRN");
    Still I it is null..
    OAHGridBean localOAHGridBean = (OAHGridBean)paramOAWebBean.findChildRecursive("HeaderNodeRN");
    if (localOAHGridBean != null){
    OAHGridQueriedRowEnumerator enum1 = new OAHGridQueriedRowEnumerator(paramOAPageContext, localOAHGridBean);
    while(enum1.hasMoreElements())
    Row row = (Row)enum1.nextElement();
    if (row.getAttributeIndexOf("SelectedFlag") != -1)
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "SelectedFlag != -1" , 2);
    if ("Y".equals(row.getAttribute("SelectedFlag"))) {
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "SelectedFlag = Y" , 2);
    if (row instanceof OAViewRowImpl) {
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "row instanceof OAViewRowImpl" , 2);
    ViewRowSetImpl rowSetImpl = ((OAViewRowImpl)row).findRowSetForRow(null);
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "localOAHGridBean.getDataAttributeName :"+localOAHGridBean.getDataAttributeName() , 2);
    paramOAPageContext.writeDiagnostics(this, "localOAHGridBean.getNumberOfRowsDisplayed :"+localOAHGridBean.getNumberOfRowsDisplayed() , 2);
    paramOAPageContext.writeDiagnostics(this, "localOAHGridBean.getRowHeaderViewAttributeName() :"+localOAHGridBean.getRowHeaderViewAttributeName() , 2);
    paramOAPageContext.writeDiagnostics(this, "localOAHGridBean.getViewAttributeName() :"+localOAHGridBean.getViewAttributeName(), 2);
    OAHGridQueriedRowEnumerator enum2 = new OAHGridQueriedRowEnumerator(paramOAPageContext, localOAHGridBean);
    while (enum2.hasMoreElements())
    Row rowToUpdate = (Row) enum2.nextElement();
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "After getting Current Row rowToUpdate.getAttribute(ReportHeaderId) :"+rowToUpdate.getAttributeCount() , 2);
    paramOAPageContext.writeDiagnostics(this, "After getting Current Row rowToUpdate.getAttribute(ReportHeaderId) :"+rowToUpdate.getAttribute("ReportHeaderId") , 2);
    //paramOAPageContext.writeDiagnostics(this, "After getting Current Row rowToUpdate.getAttribute(ReportHeaderId) :"+rowToUpdate.getAttribute("ReportHeaderId") , 2);
    //paramOAPageContext.writeDiagnostics(this, "After getting Current Row rowToUpdate.getAttribute(ReportLineId) :"+rowToUpdate.getAttribute("ReportLineId") , 2);
    }else
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "localOAHGridBean is null", 2);
    It prints "localOAHGridBean is null"..
    Regarding getCurrentRow() following is the code..
    ExpenseAllocationsAMImpl oam = (ExpenseAllocationsAMImpl)paramOAPageContext.getApplicationModule(paramOAWebBean);
    ExpenseAllocationsVOImpl distVO = (ExpenseAllocationsVOImpl)oam.getDistsVO();
    if(distVO!= null)
    //OARow oarow = (OARow)vo.getCurrentRow();
    if (paramOAPageContext.isLoggingEnabled(2)) {
    paramOAPageContext.writeDiagnostics(this, "before distVO.getFetchedRowCount(1) ", 2);
    paramOAPageContext.writeDiagnostics(this, "distVO.getFetchedRowCount(1) "+distVO.getFetchedRowCount(), 2);
    paramOAPageContext.writeDiagnostics(this, "distVO is not null", 2);
    paramOAPageContext.writeDiagnostics(this, "After getting expAllVO.getCurrentRowIndex() :"+distVO.getCurrentRowIndex(), 2);
    Output in log..
    [39]:PROCEDURE:[xxcep.oracle.apps.ap.oie.entry.accounting.webui.XxcepAllocationsHGridC26]:before distVO.getFetchedRowCount(1)
    [40]:PROCEDURE:[xxcep.oracle.apps.ap.oie.entry.accounting.webui.XxcepAllocationsHGridC26]:distVO.getFetchedRowCount(1) 0
    [40]:PROCEDURE:[xxcep.oracle.apps.ap.oie.entry.accounting.webui.XxcepAllocationsHGridC26]:distVO is not null
    [40]:PROCEDURE:[xxcep.oracle.apps.ap.oie.entry.accounting.webui.XxcepAllocationsHGridC26]:After getting expAllVO.getCurrentRowIndex() :-1
    Thank you..
    Vasu..

  • Search help with new selection within if more than 500 entries

    Dear all,
    I created a new search help and this works fine ... If I compare my search help with a default search help from SAP,  I have 1 small feature that not seems to work ... With the default one, it is possible to make a new selection within the search help by clicking on the arrow down :
    If I look at my search help, I don't have the possibility to make a new selection :
    Does anyone how this can be done ?
    Thanks in advance !
    Greetz,
    Kurt.

    HI,
    Here are the general steps to get you started.
    1. Identify the search help being used (on the ship-to-party field, F1 then Tech Info). I believe you want the collective search help SD_DEBI.
    2. Create your own search help with the fields you want to use with SE11, like 'ZDEBI' as an example.
    3. Append 'ZDEBI' to SD_DEBI. (Goto->Append Search Help).
    4. Clean things up by "Hiding" the old search help. In the 'Included Search Help' tab of the collective search help SD_DEBI, there is a check box that you can tick to hide included search helps.

  • SSLSocket created with expired certificates

    The tests documented here were performed using Sun JSSE 1.0.2.
    Server
    I have installed TOMCAT and configured it for SSL by following the instructions detailed in the following link:
    http://jakarta.apache.org/tomcat/tomcat-3.3-doc/tomcat-ssl-howto.html
    NB: The system date was set back by more than three months to ensure that the certificate contained in the store is now expired.
    Client
    I have created a simple java client test program that attempts to create an SSLSocket connecting to the TOMCAT SSL port.
    The code is listed below:
    SSLSocketFactory factory = (SSLSocketFactory)SSLSocketFactory.getDefault();
    SSLSocket socket = (SSLSocket)factory.createSocket("127.0.0.1", 8443);
    System.out.println("Establishing SSL socket connection");
    * register a callback for handshaking completion event
    socket.addHandshakeCompletedListener(
    new HandshakeCompletedListener() {
    public void handshakeCompleted(HandshakeCompletedEvent event) {
         System.out.println("Handshake finished!");
         System.out.println("\t CipherSuite:" + event.getCipherSuite());
         System.out.println("\t SessionId " + event.getSession());
         System.out.println("\t PeerHost " + event.getSession().getPeerHost());
    socket.startHandshake();
    socket.close();
    System.out.println("Established SSL socket connection");
    Tests
    The test program was run as follows (NB: With the system date set correctly to the current date):
    Test 1
    With no parameters passed.
    Result: This produces an untrusted server cert chain error. This happens because the truststore information has not been supplied. This result is as expected.
    Test 2
    With the following parameters:
    -Djavax.net.debug=ssl:keymanager
    -Djavax.net.ssl.trustStore= set to the location of a truststore file containing the same EXPIRED server certificate mentioned above
    Result: This does not produce any errors and the socket is created successfully and the handshake completes successfully. As the truststore at the client (i.e. the java test program) and the keystore at the server (i.e. SSL enabled TOMCAT) both contain the same EXPIRED certificate it was expected this would result in a failure to create the SSLSocket. The debug trace that is output does indeed show that the certificate has expired yet somehow the connection is still being made.
    It should be noted that test 2 has been run on numerous occasions in the past and has previously given the expected result. That is to say, a failure to create the SSLSocket with an error message stating that the certificate had expired. Nothing appears to have changed in the environment in which these tests are being run that should cause them to start to fail now.
    Has anyone seen this strange behaviour before?

    There are fellow sufferers...
    http://forum.java.sun.com/thread.jspa?threadID=560690&tstart=0
    I too noticed this.
    I've a simple 20 line SSL server and SSL client and can reproduce this behaviour.
    ie. trying with an good cert, it exchanges data, with a bad cert, I get an exception, and with
    an expired cert, it exchanges data when I expect this last one to fail.
    I dont know what the solution is but if I were to hazard a guess, I'd say maybe I need
    to subclass the TrustManager? or maybe set some policy somewhere.
    In the meantime, I've just invalidated it manually.
    ie. on startup or whenever appropriate, I do the following...
    KeyStore keystore = null;
    // Load the keystore in the user's home directory
    FileInputStream is = new FileInputStream(filename);
    keystore = KeyStore.getInstance(KeyStore.getDefaultType());
    keystore.load(is, password.toCharArray());
    is.close();
    for (Enumeration ea = keystore.aliases(); ea.hasMoreElements();) {
    String alias = (String) ea.nextElement();
    // Get certificate
    java.security.cert.X509Certificate cert =
    (java.security.cert.X509Certificate) keystore.getCertificate(alias);
    try {
    cert.checkValidity();
    } catch (java.security.cert.CertificateException e) {
    System.out.println( "Invalid Certificate for " + alias );
    keystore.deleteEntry(alias);
    ie. I remove the offending cert from the truststore...
    This is a stop-gap measure till I figure out what to do instead.
    Hope this helps...
    Chai

  • Windows Server 2008 R2 with multiple Roles OS Rebuild, Need help with Certificates.

    Hi,
    I have rebuilt a Server for my client and I require help with certificates..
    I am unsure exactly what to do to get this server working as it was.
    Example, The Windows Server 2008 R2 has Microsoft Exchange, DNS, DHCP, ADDS, FileServices,Network Policy and access Services and Webservices roles installed on a single box.
    Since the Server OS Rebuild I am getting 2 issues that pop up usually when Outlook in opened on a client Workstation,
    I have not dont anything certificate wise to the server since OS Install, and the messages I get and best described here
    I seen on a backdrive, a few certificate files I dont know if we can use these files for anything but we have the following files of drive E (Backup)
    e:\server.xxxx.com.au\gd_iis_intermediates.p7b
    e:\server.xxxx.com.au\server.xxxx.com.au.crt
    e:\ssl\2013-2018.cer
    1st Message is about a Proxy certificate I dont get this often but saw it today and my client clicked ok too quickly.
    I have seen it and didnt see it again after trying to close outlook and reopen
    I looked up google images and tried to find it...
    It's like this, (There is a problem with the proxy server's security certificate.
    The security certificate is not from a trusted certifying authority.)
    2nd Message is about Security Alert, Autodiscover.xxxx.com.au Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the sites security certificate.
    -X- The security certificate was issued by a company you have not chosen to trust. View the certificate to determine whether you want to trust the certificating authority
    -TICK- The security certificate date is valid
    -X- The name on the security certificate is invalid or does not match the name of the site
    Do you want to preceed
    [Yes][No][View Certificate ...]
    3rd Message is very Close to the 2nd Message, is about Security Alert, xxxx-server.xxxx.local, Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the sites security certificate.
    -X- The security certificate was issued by a company you have not chosen to trust. View the certificate to determine whether you want to trust the certificating authority
    -TICK- The security certificate date is valid
    -TICK- The name on the security certificate is invalid or does not match the name of the site
    Do you want to preceded
    [Yes][No][View Certificate ...]
    If you can help guide me thou this as I'm very new to setting up certificates. I had a friend tell me about something in DNS.. but he has been super busy and I want to learn what to do.
    Thank-You.

    Hiya,
    quite a lot has the same confusions as you do, so I've written a simple explanation on the subjet of certificates
    http://jesperarnecke.wordpress.com/2014/03/22/certificates-simple-explanation/
    Let me know if that helps you and if you need further assistance.

  • Want a complete migration guide to upgrade 11.1.0.7 to 11.2.0.3 database using DBUA..We are implementing R12.1.3 version and then have to migrate the default 11gR1 database to 11.2.0.3 version. Please help with some step by step docs

    Want a complete migration guide to upgrade 11.1.0.7 to 11.2.0.3 database using DBUA..We are implementing R12.1.3 version and then have to migrate the default 11gR1 database to 11.2.0.3 version. Please help with some step by step docs

    Upgrade to 11.2.0.3 -- Interoperability Notes Oracle EBS R12 with Oracle Database 11gR2 (11.2.0.3) (Doc ID 1585578.1)
    Upgrade to 11.2.0.4 (latest 11gR2 patchset certified with R12) -- Interoperability Notes EBS 12.0 and 12.1 with Database 11gR2 (Doc ID 1058763.1)
    Thanks,
    Hussein

  • I need help with the Web Application Certificate

    Greets,
    The title says it all really. I need help with the Web Application Certificate.
    I've followed the instructions from here:
    https://www.novell.com/documentation....html#b13qz9rn
    I can get as far as item 3.c
    3. Getting Your Certificate Officially Signed
    C. Select the self-signed certificate, then click File > Certification Request > Import CA Reply.
    I can get the certificate in to the Filr appliance but from there I'm stuck.
    Any help much appreciated.

    Originally Posted by bentinker
    Greets,
    The title says it all really. I need help with the Web Application Certificate.
    I've followed the instructions from here:
    https://www.novell.com/documentation....html#b13qz9rn
    I can get as far as item 3.c
    ok when you have you self signed certificate and you requested an official certificate with the corresponding CSR then you just need to go back to the digital certificates console. To import the official certificate, select the self signed certificate, then click File > Certification Request > Import CA Reply. Then a new windows pops out to select the certificate from your trusted authority from your local hard disk. Find the file (.cer worked for me) and click ok. As soon as you do this in the digital certificates console the self signed certificate will change the information that now it is officially signed. Look at the second column and you should see the name of your trusted authority under "issue from"
    I personally had a lot of issues across all platforms. Especially Firefox and Chrome for android. Needed to pack all the root cert, intermediate cert and signed cert into one file and import as CA reply. Not even sure if this is correct now. But at least it works.

  • TS1424 IPOD WONT CONNECT TO ITUNES STORE I'VE TRIED EVERYTHING EVEN RESTORED BACK TO FACTORY DEFAULT, CAN ANY ONE HELP WITH THIS

    Every time I try to get on itunes store on my ipod it tells me that it "cannot connect to itunes store", I've tried everything even restored the ipod to factory settings and nothing, can some one please give a solution that will work?

    Hi datnativeBUNNZ,
    If your iPod can't connect to the iTunes store, check out this article for some additional troubleshooting steps:
    Can't connect to the iTunes Store
    http://support.apple.com/kb/TS1368
    Troubleshooting on an iPhone, iPad, or iPod touch
    If you haven't been able to connect to the iTunes Store:
    Make sure that your iOS software is up to date by connecting your iOS device to iTunes and clicking on Check for Update in your device's Summary page in iTunes.
    Check and verify that you are in range of a Wi-Fi router or base station. If you are on a 3G capable device, make sure that cellular data is turned on from Settings > General > Cellular.
    Note: If connected to 3G, larger items may not download. You may need to connect to Wi-Fi to download apps, videos, and podcasts. 
    Check to make sure you have an active internet connection. You can check the User Guide for your device for help with connecting to the internet. 
    Check to make sure other devices (portable computers, for example) are able to connect to the Wi-Fi network and access the internet.
    Try resetting (turning off and then on again) your Wi-Fi router
    If the issue still persists see, iOS: Troubleshooting Wi-Fi networks and connections or iOS: Troubleshooting Wi-Fi networks and connections.
    Take care!
    - Ari

  • Help with certificates

    I want to sign a jar file and also make a cab file (for IE VM) with the same certificate but I can't :
    First I tried to generate a certificate with makecerts (SDK for Windows) and I've imported it in keystore with keytool. That's ok except I can't signed my jar file with (it said certificate not found however certificate appears with "keytool -list" !!)
    Second I generated a certificate with keytool, now I can sign my jar file ... but I can't build my cab file with !! (error : there is not valide certificate in the my cert store)
    Is there possible to sign jar file and build cab file with the same certificate ? And how ?
    Many thanks for any reply ...

    Hi patrix3,
    Well, if you;re aiming at the browser JVM and not the plug-in then all you need is one of our certificates.
    Our MSAuthenticode certificate allows you to sign code for both IE and Netscape (JVM's) with a singlke certificate, all you need to do is follow a simple export/import process and sign the files with the appropriate tools.
    Read more about it here:
    http://www.thawte.com/getinfo/products/devel/diffapps.html
    If you decide to buy though, I woudl go for the NSObjectsigning certificate as it allows you to control the keysize of the certificate, unless you do not mind using a 512 bit key...
    If you need anything else, let me know.
    Regards,
    Jason Barr

  • Why are security headers not visible when viewing "sent" mail for mail sent with S/MIME certificates?

    I am using an S/MIME certificate to sign my emails using Mail on Mountain Lion 10.8.2.  I have a trusted S/MIME certificate for each of my email accounts.  The certs and private keys are properly installed in the keychain.  I am able to successfully send signed (and optionality encrypted) email and the recipients are all all receiving the emails showing a trusted signed email without having to acknowledge or trust the signature.  So technically the certificates are working.  Obviously the encryption option is only offered when I also have the recipients certficate in my keychain.
    What I am noticing is that when I look in my sent items - (regardless of which email I used as the "sender") - I don't see any indication in the mail headers that the mail was sent with a signed certificate - even though I know the recipient is seeing that the mail is signed with a cert.  I have no way of telling whether I sent the mail as "signed" or "unsiged".  The default is to use the certificate for all outbound emails - unless I specifically uncheck the secure signing option before sending.  In mail that I recieve - sent from others with certs or sent from one of my email accounts to the other - I see the the certificate indication in the email header.
    On rare occasion - I do see the certificate when viewing sent mail - but only for  random sent mails - and so far I believe I have only seen the certificate show up in mail that is sent from my iCloud account.  I can send subsequent mail from iCloud - and still not see the certificate in the sent items.
    Why am I not seeing the Security Header showing the certificate when viewing mail that I have sent in my sent items folder?  Is there some setting that I am not seeing that controls this - or is this a bug in Mac Mail?  Also why does the security header show up for just a handful of sent emails - when hundreds of signed emails have been successfully sent.
    Any help would be appreciated.  The behavior is the same on my other Macs - at least the ones on which the certificates are also installed.
    Also - I don't have my certs installed on my iPhone yet - so I can't tell on the iPhone if the certs are showing up in the sent folder - but I can see the certs on mail that I send to myself from the Mac but receive on the iPhone.
    ~Scott

    I stopped using the S/MIME certs and stopped signing my emails.  Too many recipients were receiving them as "attachements" especially if the recipients email account was on an Exchange server.  My certs have since expired and I have not done anything to further analyze the situation.  My original post was over a year ago and I have long since been on Mavericks.
    To: iddontknowwhoiamsowhat ... I am not totally following your response.  You say you are seeing the exact same issue - yet you are also saying you can look at the sent mails from os x and ios - does this mean that you see the security badges on the sent emails in both os x and ios?  I assume you are on Mavericks?

  • Need HELP getting my signed certificate to be recognized by Extension Builder in Eclipse! Getting Error in Windows!

    When I use Extension Builder 3 in Eclipse to package my files into a .zxp ... I get an 'invalid certificate' error.  Working in Windows, with Photoshop CC 2014.
    This .p12 certificate does currently work find in Configurator 4 for my CS6 panels.
    Please help me get this working! Thank you!

    Hi hdbrew,
    "extension doesn't contain a valid signature" is a warning message that I've got in the past when Adobe Extension Manager (AEM) wasn't up to date - so you might check whether you've the latest version here: https://creative.adobe.com/en/products/extension-manager.
    Paid vs. Free (self signed) certificates: I had a paid one in the past (no AEM warnings) but there are a couple of shortcomings IMHO:
    1. With Adobe Add-ons, AEM and its warning alerts are bypassed altogether (files are deployed via the CC app) - so from the user point of view there's no difference between self-signed and paid certificates.
    2. An extension signed with a paid certificate stops working when the certificate expires. Self signed ones keep working even past the expiration date.
    And three, I find it "peculiar" to pay a third party authority to certificate Adobe that I am who I am in order to be allowed to developed for... Adobe itself (lot of words to say: free is cheaper ).
    Extension Builder for bundling: as I wrote, personally I don't use EB - it's not been updated in a while (it's been acknowledged by the EB team too - who has kept releasing updates as CEP libraries) and I prefer a simple code editor + command line for signing and packaging, so others can be more helpful than me.
    Yet, if you don't need to package an hybrid extension, it's a matter of a simple line, such as:
    ./ZXPSignCmd -sign yourSourceFolder yourDestFolder/yourExtensionName.zxp yourCertFile.p12 yourCertPassword -tsa https://timestamp.geotrust.com/tsa
    Conversely, if you need to go hybrid (i.e. to deploy extra stuff alongside with your extension, e.g. a plugin) it's a matter of compiling an MXI file and the whole process is slightly more complex. Anyway, you can find information in the blogpost I mentioned earlier (the full series of 16 Tips so far is here).
    Regards,
    Davide Barranca
    www.davidebarranca.com
    www.cs-extensions.com

  • Help with Mail & Digital Signatures

    My work is moving to Common Access Cards and digitally signed email. I can't get Mail to bring up the digital signature icon when I use the CAC card. It works fine with a software certificate, but I can't use that.
    The certificates in the CAC show up in a different keychain, and I think Mail wants the certificates in the login keychain. I've tried the following:
    -- importing the certificate from the CAC (didn't allow it)
    -- changing the default keychain to the CAC keychain (caused mail and keychain access and Safari to all quit)
    I don't really want to try logging in using the CAC card -- the only instructions I've seen to do this require messing around with Terminal and other files. Seems the potential for messing things up is rather large.
    Anyone know how I can get Mail to recognise the CAC card for digital signatures?
    Mac Pro   Mac OS X (10.4.9)  

    I haven't had to do this myself, but these instructions may be of help, if you haven't already seen them.
    Matt

Maybe you are looking for

  • Integer- double and a question about time

    Hello! I have two questions 1) I have two integers int1 and int2 I want to to int1/int2---> get a number of type 00.0 (double) is there a simple way to achieve this? 2) I want to get time (just time) of the format 23:01 is there a simple way to achie

  • Problem sending pictures by text

    When I send a photo by text message, it does not work. It is always coming up with 'General Problems'. I have tried everything and I cannot figure it out. I can send the pictures to my Facebook, just not by text. Any suggestions??

  • Losing hyperlinks when linking word documents

    We use RoboHelp version 9.0 Project description We have a Parent project with 7 child projects. Each child project has, on an average, 40 files. The files in each child project are linked to word documents. Every time we have updates to content, we u

  • LMS3.2 Syslog reports very slow when send via email

    Hello, we have ~5000 devices in LMS3.2 and we have a problem with syslog reports. When I create a "severity level summary report" for 5000 devices for the last 24hours and select as run type "immediate" it needs ~2-3 minutes. That's ok. But when I cr

  • I can not open itunes in windows 7, any suggestions?

    I can not open itunes in windows 7, any suggestions?