How to install a root certificate of private CA for SSL initiation in ACE 4710 ?

Similar Messages

• How do I install a Root Certificate on my Iphone for an email account?

  I use an email account requiring a root certificate to be installed on my phone. I have this on my PC and need to know how to actually import the certificate to my iPhone. I go through the normal setup with the account which shows the correct port settings, however, without the certificate, every time I try getting emails, it fails to connect with the server. Any ideas??

  Thanks for the tip. I emailed the certificate to my other email account on my iPhone, but when I tried to open the attached certificate I got a message - "Invalid Profile - Profile format not recognized."
  Any other ideas. I may have to just set up another sure email account with another server.

• HT5012 Can I install two root certificates with the same name in iPad?

  Can I install two root certificates with the same name in iPad?

  Antaeus00 wrote:
  I tried sending a request for help,
  But did you succeeed in sending a request for help?
  Did you receive a response? How long has it been since you sent a request?
  but I need someone with more authority to talk to.
  There is no one with more authority than iTunes store support. We herem are only users.

• Installing Domain Controller certificates remotely - private key remains on local server!

  Using a 3rd party CA (Entrust), I have successfully requested and installed Domain Controller certificates via the Certificates MMC snap-in.
  I did this from one Domain Controller, and then just used the (right click) "Connect to another computer" option to do the rest.  Everything looks absolutely fine, the certificates look ok.... certificate chain is complete, and valid (all
  CA certs are installed) and the certificates say "You have the private key that corresponds to this certificate".
  If I do a LDAPS bind using LDP.exe, it works fine on the first DC.
  Do this on the next and I get the error:
  Cannot open connection
  Error 81 = ldap_connect(hLdap, NULL);
  Server error: <empty>
  Error <0x51>: Fail to connect to DCHostname.
  After some checking I looked in the folder C:\ProgramData\Microsoft\Crypto\Keys
  This contains a lot of files on the DC I was logged onto when installing the certs, and no files on any of the other DCs.  I am guessing this is the private key file and it has stored all of them on the local machine I was running MMC from rather than
  on the machines I connected to from MMC.
  Is there any way to get these keys onto the correct DCs now - or will I have to re-request all of the others.  The private key was not exportable.
  I figured copying and pasting them was probably not going to work with a private key, but I tried it anyway just to be sure!
  It is pretty annoying as no clue was given during the process of requesting and installing the certificates, and there is no error when you look at the certificate - they all think they have the private key associated to them, even though it rather looks
  like they don't!
  It's a bit painful requesting certificates here, so any help in avoiding this would be appreciated!  Thank you

  Thank you Elke,
  So I copied the key files across from the server where they were all generated to the server I remotely connected to (which had no key files at all).  Copied all just to be sure, though I’m
  pretty sure which one actually relates to that server as I did them all in order - reflected by the time stamps.
  Ensured all the permissions were the same, and that they were marked as ‘system’ files.
  Ran the command
  certutil -repairstore my [SerialNumber of cert]as
  you suggested, but no luck unfortunately.
  So firstly, I get the same error message:
  Cannot find the certificate and private key for decryption.
  CertUtil: -repairstore command FAILED: 0x80090010 (-2146893808)
  And then I get:
  CertUtil: Access denied.
  Not sure why the access denied, I am running elevated with full local and domain administration rights.
  Toby

• How to identify which root certificate is used?

  How to identify which root certificate(on terminal) is used when a terminal is connecting to a https website?
  SecurityInfo.getServerCertificate() only returns the certificate send from the https server.
  But how could know the which local root certificate is used to verify the certificate send from the https server?
  Is there a method or class in MIDP 2.1?
  Thanks

  UP�Cthis question is urgent. Hope anyone can answer me!

• I just purchased Wittenberger Fraktur how do install this font into my photoshop cs6 for mac ?

  I just purchased Wittenberger Fraktur how do install this font into my photoshop cs6 for mac ?

  You just install it in the OS.
  Photoshop gets the fonts from the OS.

• How to install old ios? v.3.0 for ex.

  how to install old ios? v.3.0 for ex. for iphone 3g?

  There is no legit way to downgrade at all.

• How to import a Root Certificate Authority for signing

  How can I import a Root Certificate Authority in order to use it with Certificate Assistant as a CA to sign other certs?
  I have the CA cert imported in keychain along with it's associated private key (from a .p12), it's got the gold icon and is recognized as a Root certificate authority, yet Certificate Assistant will not list it as an available Root CA in the "Set Default CA" action dialog, the "Add..." dialog seems only interested in a ".certAuthorityConfig" plist file.
  Do I have to generate a certAuthorityConfig for the CA? I can't seem to find a way to do that. No clues from certtool & security CLI utils even.
  Any info/leads on how to get this to work would be much appreciated.
  Regards,
  -david

  Hi Alex,
  From ACE perspective, it doesn't make differences if you are using certificates issued by your local or a "well known" CA. Moreover, if not mistaken, you have to configure authentication group whatever you are doing client or server authentication.
  http://www.cisco.com/en/US/partner/docs/app_ntwk_services/data_center_app_services/ace_appliances/vA4_1_0/configuration/ssl/guide/certkeys.html#wp1043643
  Thanks,
  Olivier

• How to install IPSec Client Certificate for Apple products (iPad,iPhoe and Mac)

  We need  Ipsec vpn client authentication with certificate (instead of pre-shared key). We tested the same with Windows client and its works fine. However when we used the same certificates with Apple products (iPad, iPhoe and Mac) it doesnt work.
  We have two types of certificates installed on the client from the CA server.
  One is the root certificate with the extenstion .cer
  and the other one is client certificate with the extension of .pfx (personal informaiton exchange)
  We can not find a proper document to install certificates and client configuration for iPad,iPhoe and Mac. We need to know what type of certificates needed, what are the certificate formats and how to install etc.
  Appreciate if someone has implemented this and share any documents.
  thanks

  This will be helpful for you :-
  http://images.apple.com/iphone/business/docs/iOS_Certificates_Mar12.pdf
  Manish

• How to install Comodo email certificate?

  Hi! I just obtained a brand new free email certificate from Comodo, but I can't make Mail see that!
  Before Lion I used certificates, but I don't remember how I got Mail to see them.
  I tried double clicking on the file, and it installs it correctly under "login / All items", but Mail doesn't seem to be affected. I read on the web that the certificate should be placed under "login / My Certificates", but copy/paste doesn't work!
  Is anyone using Comodo or similar certificates with Lion 10.7.2 and Mail.app ?
  Cheers!

  I can't seem to get this to work either.
  I downloaded an email certificate from Comodo.  It saved as a .p7s file, which I double-clicked to install into keychain. 
  In keychain, I have an apple certificate with a private key for my apple ID, which is the same gmail address as the address I used for the comodo certificate.
  However, there appear to be two separate certificates from comodo: one named for my gmail address, and one named "COMODO Client Authentication and Secure Email CA".  These show up under "Certificates" but not under "My Certificates"...
  When I launch Mail and check for TLS certificates in account preferences, I only see the apple ID one listed, not any of the ones from comodo...
  Any idea what's going on here?
  Thanks,
  Trevor

• Hod do I install enterprise root certificates by default

  I am trying to develop en enterprise depployment of Firefox (and Thunderbird for that matter) and I woudl like to be able to provide configuration of the package. I've found the enterprise working group site and through the references there have figured out how to do most of what I'm after. One issue remains -- our organization uses an in house Certificate Authority to generate server and other certificates used throughout our systems. I need to install our CA's certificate into Firefox's trusted root cert store. I can do this within existing user profiles via the nss tools. But, new users (new profiles, actually) won't get this update by default. How can I insure that user's profiles receive our root certificate by default (just like Verisign's and the other certs included by default) when they begin using Firefox?
  == User Agent ==
  Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.2; .NET4.0C)

  See:
  http://mxr.mozilla.org/mozilla/source/security/nss/lib/ckfw/builtins/
  http://mxr.mozilla.org/mozilla/source/security/nss/lib/ckfw/builtins/README

• How to install and use certificates on client?

  Hello everyone, and first of all sorry for my poor, italian-accented english.
  I have some questions about SSL and certificates. I'm developing a java desktop application, which should connect to a https server, authenticate with a previously downloaded certificate and then gain access. Some specs: I work on a Windows Xp Pro machine with Netbeans 6.1 and jdk 1.6.0_07.
  Now, I'm using HttpUnit libraries to connect the first time, login with basic authentication and download the certificate, but after i get it I'm not sure how to install the certificate (using java, it has to be an automated procedure) on the client machine and then how to use it to connect to the server. I've tried to use the code I've found here and after using it I can see the certificate inside Control Panel > Java > Securiy > Certificates > System, but I'm not sure I'm installing it in the correct way and/or in the correct path.
  Everytime I try to connect to the server I get back a HTTP 403 forbidden exception. Does someone know any tutorials/howtos/example codes to suggest to me? Or could tell me what's the right installation procedure using java? Any help would be very appreciated.
  Thanks in advance
  K.

  After banging my head on my keyboard for a lot of hours, I've got it!
  I was trying to install a *.pfx certificate, and that was bad. I tried to convert it in *.p12 or *.cer but that workaround didn't work. Finally I've found a small code to use a *.pfx certificate without installing it and... it works! No more 403 errors now, I can get that damn page. :)
  Here is the class I've used (I've found it somewhere googling around but I've lost the link, sorry. Anyway, I've modified it a little)
  import java.io.BufferedReader;
  import java.io.FileInputStream;
  import java.io.InputStreamReader;
  import java.net.*;
  import java.security.KeyStore;
  import javax.net.*;
  import javax.net.ssl.*;
  public class ConnectWithPfx {
     static final int HTTPS_PORT = 443;
     public static void main(String argv[]) throws Exception {
        // Get a Socket factory
        SocketFactory factory = SSLSocketFactory.getDefault();
        SSLSocketFactory socketFactory = null;
        try {
              KeyStore keyStoreKeys;
              KeyManagerFactory keyMgrFactory;
              SSLContext sslContext;
              keyStoreKeys = KeyStore.getInstance("PKCS12");               
              keyStoreKeys.load(new FileInputStream("mycertificate.pfx"),"certpassword".toCharArray());
              keyMgrFactory = KeyManagerFactory.getInstance("SunX509");
              keyMgrFactory.init(keyStoreKeys, "certpassword".toCharArray());
              sslContext = SSLContext.getInstance("SSL");
              sslContext.init(keyMgrFactory.getKeyManagers(), null, null);
              socketFactory = sslContext.getSocketFactory();
              Socket socket2 = factory.createSocket("www.my.host", HTTPS_PORT);
        } catch (Exception e) {
              e.printStackTrace();
          URL url = new URL("https://www.my.host/mypage");      
          // Open a HTTP connection to the URL assigning the SocketFactory we created before
          HttpsURLConnection conn = null;
          conn.setDefaultSSLSocketFactory(socketFactory);
          conn = (HttpsURLConnection) url.openConnection();              
          // Allow Inputs
          conn.setDoInput(true);
          // Allow Outputs
          conn.setDoOutput(true);
          // Don't use a cached copy.
          conn.setUseCaches(false);
          conn.setRequestProperty("Connection", "Keep-Alive");
          BufferedReader in = new BufferedReader(new InputStreamReader(conn.getInputStream()));
          String line;
          String response = "";
          while ((line = in.readLine()) != null) {
              response += line+"\n";
          System.out.println(response);
  }Hope this could be useful for someone else. Thanks to everyone who read or replied to my thread. :)

• How to install & use x509 certificate in XI 3.0

  Hi gurus,
  Somebody knows as install a x509 certificate in XI 3.0? Is it in Visual Admin?
  Is There some guide?
  When this installed, how we test it? What configuration we must do in Communication Channels and the Receiver Agreement/Sender Agreement? What tool we can use to test the scenario?
  Kind regards

  Hi,
  This is used when you are using FTPS in your communicaiton channel. The Certificates are installed in the visual administration. I have not seen any guide on how to install this. But you have a detailed step  by step procedure of how to install in this link:
  http://help.sap.com/saphelp_nw04/helpdata/en/53/b221e3b466b346860715a550ca987d/content.htm
  Apart from this you may also need to install SAP Java Cryptographic Toolkit. You get some help on this at this link:
  http://help.sap.com/saphelp_nw04/helpdata/en/8d/cb71b8046e6e469bf3dd283104e65b/content.htm
  Once when you do this your certificates can be seen from the communicaiton channel. In your communication channel in the FTP Conneciton parameters you have to select Conneciton security as FTPS and check the check box X.509 certificates. In keystore if you press F4 you will see the keystore which were installed earlier. Select the keystore and the X.509 Certificate.
  Once you are done with this run your scenario. If you have any errors you will see in communicaiton channel monitoring.
  ---Satish

• How to install enterprise trust certificate in iphone

  I am trying to use the outlook mail account. But i need to install the enterprise trust certificate before using it. Where i can find the link and how to install it?

  Apple have restrictions against adobe on the iphone, ipod touch and ipad. There will not be any flash in the near future.

• Fail to install a root Certificate on Q10

  Hi all,
  I have been trying to install root Certificates on my new Q10 however without luck.
  1) What I tried to install were some root certificates (with .crt extension), in particular, one being the 'Deutsche Telecom root CA 2'. 
  2) I was a bit surprised that these were not including by default, nonetheless started to do it by myself, following the 'official' instructions found on this page:
  http://docs.blackberry.com/en/smartphone_users/deliverables/47561/als1342708099072.jsp
  3) Tried with WIN, with MAC, via USB, via WIFI, all I could achieve was to put those files on to the so called 'cert' folder on the phone.
  4) When trying out the last steps (step 9 and 10, namely to actually import those certificates into the system), the phone did not seem to find the files I just copied! 
  Can someone give me a clue? Am I using wrong files? Not .crt then what?
  Thanks in advance,
  Henk

  Hello hengzou and welcome to the BlackBerry Support Community Forums.
  Sorry to hear you're experiencing an issue importing  certificates.
  When you are in the Security and Privacy > Certificates > Import are you changing the Class to the appropriate one? As in Personal Trusted CA, Personal Client or Work Client based on the certificate you imported? 
  Do you see the check boxes to select if it's a VPN, Web, Wi-Fi or Device certificate for store?
  If you have tried all these combinations and the issue persists then it is advised you contact your mobile service provider to and ask for a ticket be opened with BlackBerry Technical support so further investigation can be done on this.
  Thanks!
  -HMthePirate
  Come follow your BlackBerry Technical Team on twitter! @BlackBerryHelp
  Be sure to click Kudos! for those who have helped you.Click Solution? for posts that have solved your issue(s)!