How to install a browser certificate OTA

Similar Messages

• How to install and use certificates on client?

  Hello everyone, and first of all sorry for my poor, italian-accented english.
  I have some questions about SSL and certificates. I'm developing a java desktop application, which should connect to a https server, authenticate with a previously downloaded certificate and then gain access. Some specs: I work on a Windows Xp Pro machine with Netbeans 6.1 and jdk 1.6.0_07.
  Now, I'm using HttpUnit libraries to connect the first time, login with basic authentication and download the certificate, but after i get it I'm not sure how to install the certificate (using java, it has to be an automated procedure) on the client machine and then how to use it to connect to the server. I've tried to use the code I've found here and after using it I can see the certificate inside Control Panel > Java > Securiy > Certificates > System, but I'm not sure I'm installing it in the correct way and/or in the correct path.
  Everytime I try to connect to the server I get back a HTTP 403 forbidden exception. Does someone know any tutorials/howtos/example codes to suggest to me? Or could tell me what's the right installation procedure using java? Any help would be very appreciated.
  Thanks in advance
  K.

  After banging my head on my keyboard for a lot of hours, I've got it!
  I was trying to install a *.pfx certificate, and that was bad. I tried to convert it in *.p12 or *.cer but that workaround didn't work. Finally I've found a small code to use a *.pfx certificate without installing it and... it works! No more 403 errors now, I can get that damn page. :)
  Here is the class I've used (I've found it somewhere googling around but I've lost the link, sorry. Anyway, I've modified it a little)
  import java.io.BufferedReader;
  import java.io.FileInputStream;
  import java.io.InputStreamReader;
  import java.net.*;
  import java.security.KeyStore;
  import javax.net.*;
  import javax.net.ssl.*;
  public class ConnectWithPfx {
     static final int HTTPS_PORT = 443;
     public static void main(String argv[]) throws Exception {
        // Get a Socket factory
        SocketFactory factory = SSLSocketFactory.getDefault();
        SSLSocketFactory socketFactory = null;
        try {
              KeyStore keyStoreKeys;
              KeyManagerFactory keyMgrFactory;
              SSLContext sslContext;
              keyStoreKeys = KeyStore.getInstance("PKCS12");               
              keyStoreKeys.load(new FileInputStream("mycertificate.pfx"),"certpassword".toCharArray());
              keyMgrFactory = KeyManagerFactory.getInstance("SunX509");
              keyMgrFactory.init(keyStoreKeys, "certpassword".toCharArray());
              sslContext = SSLContext.getInstance("SSL");
              sslContext.init(keyMgrFactory.getKeyManagers(), null, null);
              socketFactory = sslContext.getSocketFactory();
              Socket socket2 = factory.createSocket("www.my.host", HTTPS_PORT);
        } catch (Exception e) {
              e.printStackTrace();
          URL url = new URL("https://www.my.host/mypage");      
          // Open a HTTP connection to the URL assigning the SocketFactory we created before
          HttpsURLConnection conn = null;
          conn.setDefaultSSLSocketFactory(socketFactory);
          conn = (HttpsURLConnection) url.openConnection();              
          // Allow Inputs
          conn.setDoInput(true);
          // Allow Outputs
          conn.setDoOutput(true);
          // Don't use a cached copy.
          conn.setUseCaches(false);
          conn.setRequestProperty("Connection", "Keep-Alive");
          BufferedReader in = new BufferedReader(new InputStreamReader(conn.getInputStream()));
          String line;
          String response = "";
          while ((line = in.readLine()) != null) {
              response += line+"\n";
          System.out.println(response);
  }Hope this could be useful for someone else. Thanks to everyone who read or replied to my thread. :)

• How to install & use x509 certificate in XI 3.0

  Hi gurus,
  Somebody knows as install a x509 certificate in XI 3.0? Is it in Visual Admin?
  Is There some guide?
  When this installed, how we test it? What configuration we must do in Communication Channels and the Receiver Agreement/Sender Agreement? What tool we can use to test the scenario?
  Kind regards

  Hi,
  This is used when you are using FTPS in your communicaiton channel. The Certificates are installed in the visual administration. I have not seen any guide on how to install this. But you have a detailed step  by step procedure of how to install in this link:
  http://help.sap.com/saphelp_nw04/helpdata/en/53/b221e3b466b346860715a550ca987d/content.htm
  Apart from this you may also need to install SAP Java Cryptographic Toolkit. You get some help on this at this link:
  http://help.sap.com/saphelp_nw04/helpdata/en/8d/cb71b8046e6e469bf3dd283104e65b/content.htm
  Once when you do this your certificates can be seen from the communicaiton channel. In your communication channel in the FTP Conneciton parameters you have to select Conneciton security as FTPS and check the check box X.509 certificates. In keystore if you press F4 you will see the keystore which were installed earlier. Select the keystore and the X.509 Certificate.
  Once you are done with this run your scenario. If you have any errors you will see in communicaiton channel monitoring.
  ---Satish

• How to install IPSec Client Certificate for Apple products (iPad,iPhoe and Mac)

  We need  Ipsec vpn client authentication with certificate (instead of pre-shared key). We tested the same with Windows client and its works fine. However when we used the same certificates with Apple products (iPad, iPhoe and Mac) it doesnt work.
  We have two types of certificates installed on the client from the CA server.
  One is the root certificate with the extenstion .cer
  and the other one is client certificate with the extension of .pfx (personal informaiton exchange)
  We can not find a proper document to install certificates and client configuration for iPad,iPhoe and Mac. We need to know what type of certificates needed, what are the certificate formats and how to install etc.
  Appreciate if someone has implemented this and share any documents.
  thanks

  This will be helpful for you :-
  http://images.apple.com/iphone/business/docs/iOS_Certificates_Mar12.pdf
  Manish

• How to install enterprise trust certificate in iphone

  I am trying to use the outlook mail account. But i need to install the enterprise trust certificate before using it. Where i can find the link and how to install it?

  Apple have restrictions against adobe on the iphone, ipod touch and ipad. There will not be any flash in the near future.

• HOW TO INSTALL ROOT (Authority) CERTIFICATES ON S4...

  Recently i bought a 6500 Classic and stupidly deleted my Authority Certificates.
  After trwaling the net for info on how to re-install certificates i couldnt find an answer apart from NO YOU CANT DO THIS.
  Well to that i say NUTS!!! because you can and i will show you how by simply following these steps.
  1. Create a New Folder on your desktop and call it whatever you like.
  2. Open notepad on your computer.
  3. Copy the text below into the Notpad file. (I got this from some website as they were using it for smething else but it does work so thanks to them or thanks to you if this is yours)
   <?xml version="1.0"?>
  <!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd">
  <html xmlns="http://www.w3.org/1999/xhtml">
  <head>
  <title>Install root CA</title>
  </head>
  <body>
  <p>
  <a href="der1.cer">Download a CA Cert1</a>
  <a href="der2.cer">Download a CA Cert2</a>
  <a href="der3.cer">Download a CA Cert3</a>
  <a href="der4.cer">Download a CA Cert4</a>
  <a href="der5.cer">Download a CA Cert5</a>
  <a href="der6.cer">Download a CA Cert6</a>
  <a href="der7.cer">Download a CA Cert7</a>
  <a href="der8.cer">Download a CA Cert8</a>
  <a href="der9.cer">Download a CA Cert9</a>
  <a href="der10.cer">Download a CA Cert10</a>
  <a href="der11.cer">Download a CA Cert11</a>
  </p>
  </body>
  </html>
  4. Save the Notpad file as type ALL FILES but when naming it just call it cert.html and save it to the folder you created on your desktop earlier.
  5. Now downlaod the Root Certificates you need to the same folder on your Desktop.
  6. When saving the first Certificate to the folder call it der1 ((make sure not to take out the file extension eg .cer)) then the second der2, third der3 and so on and so on till you get to der11. (Dont worry this will not rename the certificate when it installs on your phone.)
   Example of what the files in your Desktop folder should be called der1.cer, der2.cer etc etc.
  7. Now transfer the whole folder from your Desktop to your Mobile phone. (I did this by using Nokia PC Suite.)
   8. When the folder with the certificates and hmtl we made have been transfered to you phone navigate using your phone to that folder.
  9. Go into the folder and open the cert.html file. (Your browser will now open a page with 11 download links available)10. Now all you have to do is click on each link and accept each certificate remembering to save and they will install on your phone. (On my 6500 Classic i can check this by Navigating through my phone to Menu>Settings>Security>Authority Certificates)
   Notes:- Some errors you may receive when trying to download the certificates through your phone browser may be Already Exists, Expired Certificate and the most annoying is Corrupted Certificate.
  Already Exists - Shouldt allow you to save (DO NOT SAVE IF IT ALLOWS YOU)
  Expired Certificate - (DO NOT SAVE)
  Corrupted Certificate - Install the certificate on your computer first, then go to Tools>Internet Options>Content>Certificates.
  (save the certificate to other people tab) Browse for the certificate you installed then export it in DER format to the Desktop Folder you created then start process over again to get it onto your phone.
  Remember to delete any certificates as you go that you have already installed so you dont get mixed up.
  Any issues reply and i will do what i can to help and if anyone has Hutchinson 3G Root Certificates please let me know.
  Thanks.
  Message Edited by andyhardie on 15-Jul-2009 04:05 PM

  I have nokia 6300 s40v3 and when I tried to open cert.html it showed format unknown.
  What should I do. Can you tell me the format of bookmark so that can rename it to cer.(format)
  sir please give some guidense its very urgent
  reply at *******
  MODERATOR'S NOTE:
  Personal details removed by a moderator. We kindly ask you not to share your personal e-mail address or any other personal information publicly on this forum. This is for your personal safety and privacy.
  Message edited by Aikin19

• How to install EAP-TLS certificate?

  Hi All,
  Our wireless network requires EAP-TLS certificate installation.
  We use a MS 2003 server as a CA server.
  I tried to brows to the issuing website (http://CAserver/certsrv) but when I get to the section where I need to choose the strength of the key, somehow the phone's browser is not showing the options...
  So, I tried to issue a certificate from the issuing station and got a file called certnew.cer .
  From what I read this is the right certificate type, so I copied the file to the phone and tried to open it...
  But it only open it with the Notes application...
  Any help????
  10x in advanced,
  Naor. 

  The certificate needs to be in .der format. You probably have it in .cer (PEM) format right now.
  You can convert it using openssl. Change the filenames appropriately:
  openssl x509 -outform der -in MYCERT.pem -out MYCERT.der 
  Then send the .der file to the phone and open it. The phone should offer to install it as a certificate.
  Message Edited by sanjaymehta on 06-Aug-2009 09:22 PM
  Message Edited by sanjaymehta on 06-Aug-2009 09:23 PM
  Sanjay Mehta
  Motorola "Brickphone" circa 1996, Alcatel One Touch, Ericsson R380, Sony Ericsson T220, Sony Ericsson T630, Nokia E50, Nokia E61i, Nokia 9300i, Nokia E71,Nokia X6, Google Nexus S, iPhone 4S

• How to install Comodo email certificate?

  Hi! I just obtained a brand new free email certificate from Comodo, but I can't make Mail see that!
  Before Lion I used certificates, but I don't remember how I got Mail to see them.
  I tried double clicking on the file, and it installs it correctly under "login / All items", but Mail doesn't seem to be affected. I read on the web that the certificate should be placed under "login / My Certificates", but copy/paste doesn't work!
  Is anyone using Comodo or similar certificates with Lion 10.7.2 and Mail.app ?
  Cheers!

  I can't seem to get this to work either.
  I downloaded an email certificate from Comodo.  It saved as a .p7s file, which I double-clicked to install into keychain. 
  In keychain, I have an apple certificate with a private key for my apple ID, which is the same gmail address as the address I used for the comodo certificate.
  However, there appear to be two separate certificates from comodo: one named for my gmail address, and one named "COMODO Client Authentication and Secure Email CA".  These show up under "Certificates" but not under "My Certificates"...
  When I launch Mail and check for TLS certificates in account preferences, I only see the apple ID one listed, not any of the ones from comodo...
  Any idea what's going on here?
  Thanks,
  Trevor

• How to install a SSL certificate on Azure?

  Hi,
  I am trying to install an SSL cert on my Azure instance. I followed this tutorial: http://www.windowsazure.com/en-us/documentation/articles/cloud-services-configure-ssl-certificate/
  However, when I deploy the package on to the staging instance it does not start up. And we can't retrieve detailed bug, and can't connect remotely to that instance.
  I am not sure what else can be done? Please help?

  hi,
  Did you upload cert into staging environment? How did you set the Https endpoint on your service definition file ?Did you try to change http to https to access cloud service? I suggest you could try to use https to visit your cloudservice firstly. If it
  doesn't work, please check your endpoints setting in your project.
  >>And we can't retrieve detailed bug, and can't connect remotely to that instance.
  Did you enable the Remote desktop? You could enable the remote desktop on your deployment (http://msdn.microsoft.com/en-us/library/windowsazure/gg443832.aspx ). Any latest info,
  please let me know.
  Hope this helps.
  Will
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• How to install a real certificate over a mobile ??

  I would want to know how can I install a certificate over a mobile or if I only can install it over an application. Another question is if I could add a certificate to my mobile secure certificate (say to the mobile that a own-made server certificate is secure).
  Thank you

  http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB13492&sliceId=SAL_Public&dialogID=77551987&stateId=0%200%2077553914

• How to install a root certificate of private CA for SSL initiation in ACE 4710 ?

  Hello ACE Gurus,
  We have to deploy end-to-end SSL for one of our application, but of course we won't be buying Entrust or other big name certificates for each web server :  we want to use self-issued certs signed by our private CA.The topology looks like this :
  Internet Client   ----HTTPs_Entrust_Cert----> ACE ------HTTPs_Private_Cert------> WebServers
  Maybe my search skills are soft, but I haven't found how to import a private CA certificate in the ACE, so that when the ACE initiates an SSL session with the webserver (as a client), it will recognize the Web Server's SSL Cert as valid, because he already has it in it's root store.
  The only thing I've found, is how to configure the ACE to ignore the SSL authentification/validation errors, like this :
  host1/Admin(config)# parameter-map type ssl SSL_PARAMMAP_SSL
  host1/Admin(config-parammap-ssl)# authentication-failure ignore
  Thanks for the help!
  Alex.

  Hi Alex,
  From ACE perspective, it doesn't make differences if you are using certificates issued by your local or a "well known" CA. Moreover, if not mistaken, you have to configure authentication group whatever you are doing client or server authentication.
  http://www.cisco.com/en/US/partner/docs/app_ntwk_services/data_center_app_services/ace_appliances/vA4_1_0/configuration/ssl/guide/certkeys.html#wp1043643
  Thanks,
  Olivier

• HOW TO INSTALL LOCKDOWN BROWSER

  I tried installing respondus lockdown broswer and I keep getting an error message
  it doesn't give me the option to download it just says save or cancel I tried to do both with no luck.
  ''(flipped case to undo accidental caps lock - c)''

  That application doesn't appear to be compatible with Firefox.
  http://www.respondus.com/products/lockdown-browser/requirements.shtml

• How to install self-signed certificate with iOS 4?

  I've been trying to install a self-signed certificate in iOS 4 with no avail. I have a webserver at home in which I connect to via SSL using a self-signed cert. It used to work in 3.1.3; it would kick out a dialog, but you were able to continue to the page. Now with iOS 4, that is no longer the case, I am unable to view the site.
  I have tried several things. I have tried emailing the cert. to myself and installing it. I get it installed but says it's untrusted and am not able to view the site. I have tried converting my .pem that is on my server to .p12 and that didn't work. I tried going to the site in Safari on my Mac and adding the cert. to the keychain and then syncing; that didn't work. I tried taking that cert. in the keychain, making sure it was trusted, exporting it to .cer and adding that to a configuration profile I created in the iPhone Configuration Utility.. that did not work despite the fact that it showed it as trusted. Am I doing something wrong or missing something here?

  I've been trying to install a self-signed certificate in iOS 4 with no avail. I have a webserver at home in which I connect to via SSL using a self-signed cert. It used to work in 3.1.3; it would kick out a dialog, but you were able to continue to the page. Now with iOS 4, that is no longer the case, I am unable to view the site.
  I have tried several things. I have tried emailing the cert. to myself and installing it. I get it installed but says it's untrusted and am not able to view the site. I have tried converting my .pem that is on my server to .p12 and that didn't work. I tried going to the site in Safari on my Mac and adding the cert. to the keychain and then syncing; that didn't work. I tried taking that cert. in the keychain, making sure it was trusted, exporting it to .cer and adding that to a configuration profile I created in the iPhone Configuration Utility.. that did not work despite the fact that it showed it as trusted. Am I doing something wrong or missing something here?

• Premier 10: How to install Inspiration Browser?

  I took Premier and Photoshop Elements off my computer and installed version 10 of both from a CD combo kit.
  When I launch Premier Elements, the Organizer loads.  One choice is the "Launch Inspiration Browser" button.  When I click on it a screen pops up saying Inspriation Browser is not installed and would I like to intall it.  Clicking "Yes" sends me to download box in my internet browser at www.goodaps.com.  Pushing the "Install Now" button and running the program yelds:  "This application cannot be installed because this installer has been mis-configured. Please contact the application author for assistance."
  It is also odd that when I launch Photoshop Elements, I can run Inspriration Browser.  So, I know it is installed.  For some reason the Premier path doesn't work.
  Clues, hints or suggestions?
  Thanks.
  Bill

  From page 18 of the Premiere Elements 10, and page 21 of the Photoshop Elements 10, booklets in the retail box version:
  Adobe write:
  BACK UP / SYNCHRONIZE FILES
  Note: Adobe Premiere Elements 10 free online benefits and Adobe Premiere Elements Plus are available in the United States only. Internet access required.
  Adobe write:
  BACK UP / SYNCHRONIZE FILES
  Note: Adobe® Photoshop® Elements 10 free online benefits and Photoshop Elements Plus are available in the United States only. Internet access required.
  Cheers,
  Neale
  Insanity is hereditary, you get it from your children

• Does anyone know how to install an SSL certificate on 10.3 Server?

  Can't find this in the documentation.

  You cannot install a spam filter on iPad. Spam is generally controlled by your email provider at the server level, though mail clients do often have a secondary filter that learns from your behavior.
  Who is your email provider? Have you tried adjusting their spam filters?