ICal server won't work with SSL certificate

Similar Messages

• Can't get mail to work with SSL certificates

  I'm setting up a 10.5.3 mail server and wanted to enable SSL for SMTP and IMAP.
  It all works fine if I use the Default certificate that the server generates automatically. But if I want to generate a new certificate with a pass phrase it stops working.
  You start seeing errors like the in the system log:
  May 30 18:29:19 megalon postfix/smtpd[1143]: warning: cannot get private key from file /etc/certificates/myserver.mydomain.com.key
  May 30 18:29:19 megalon postfix/smtpd[1143]: warning: TLS library problem: 1143:error:0906406D:PEM routines:DEF_CALLBACK:problems getting password:pem_lib.c:105:
  May 30 18:29:19 megalon postfix/smtpd[1143]: warning: TLS library problem: 1143:error:0906A068:PEM routines:PEMdoheader:bad password read:pem_lib.c:401:
  May 30 18:29:19 megalon postfix/smtpd[1143]: warning: TLS library problem: 1143:error:140B0009:SSL routines:SSLCTX_use_PrivateKeyfile:PEM lib:ssl_rsa.c:709:
  May 30 18:29:19 megalon postfix/smtpd[1147]: warning: cannot get private key from file /etc/certificates/myserver.mydomain.com.key
  May 30 18:29:19 megalon postfix/smtpd[1147]: warning: TLS library problem: 1147:error:0906406D:PEM routines:DEF_CALLBACK:problems getting password:pem_lib.c:105:
  May 30 18:29:19 megalon postfix/smtpd[1147]: warning: TLS library problem: 1147:error:0906A068:PEM routines:PEMdoheader:bad password read:pem_lib.c:401:
  May 30 18:29:19 megalon postfix/smtpd[1147]: warning: TLS library problem: 1147:error:140B0009:SSL routines:SSLCTX_use_PrivateKeyfile:PEM lib:ssl_rsa.c:709:
  Anyone know how to fix this?

  I still think there's something wrong with Server Admin in 10.5 that's stopping this from working.
  I've checked the certificate I'm using on my 10.4.11 mail server and it's key file is encrypted but SMTP mail works fine over SSL. I imported the certificate using Server Admin, I didn't edit the config file manually.
  How would the system be decrypting the key before postfix uses it in 10.4? Any why doesn't this work in 10.5?

• Getting error "Problem with SSL Certificate" but I'm connecting to my private server without SSL

  I wanted to create a PDF from a subtree at a website. The first problem was that Acrobat Pro (11.0.7) wouldn't spider it (probably because there was a robot.txt file there) so I had to use SiteSucker to pull the pages down to my Mac.
  Then I discovered that Acrobat Pro can't handle file:/// URLs so that was no good either
  So then I copied all the pages to a folder on my Linux server where I use a non-standard port (86) for http connection as a minor security precaution.
  When I tried to access that from Acrobat Pro, it bitched about a problem with SSL Certificate but gave me no option to do anything about it. More relevantly, all the files were accessible using http protocol, not https so there shouldn't have been any need to deal with SSL certificates at all
  I had to temporarily enable port 80 on my apache server at which point it's now pulling all the files in and hopefully converting them.
  A) We're at version 11 ---- these kinds of issues should have been fixed years ago
  B) While you're at it, fix the stupid UI issue where the download dialog disappears completely if Acrobat Pro doesn't have the focus. On a long download, I'd like to be able to see progress while working on other stuff. Acrobat Pro is not the center of the universe!

  Interesting point 2, I am working on a Mac plugin at the moment. It does not hide its dialogs when switching to a different app. I consider this a bug and will fix it so the dialog disappears. I hadn't considered the question of progress but there is a very strong reason to do this on the Mac.
  My tests seem to show that
  (a) to get a dialog to sit above PDF documents all the time, it must be on a higher "level".
  (b) if a dialog is at a higher level, this is a global setting.
  So, if the dialog is not hidden when switching all, it will typically sit on top of the other app's document windows. This would not be popular, as the end user, unless they have mountains of screen space and choose to use it that way, must either close or move the dialog when switching app, then bring the dialog back.  So, because Acrobat Pro is not the centre of the universe, it will hide dialogs (or rather, the Mac will, as it's a standard option when creating a window).

• Importing external web service with SSL certificate security

  Hello,
  I'm trying to import an external web service (that resides in another server, independent of ours). However, right after I enter the WSDL in the import window I get the following error in the NWDS:
  sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target      [Error: com.sap.ide.es.core.ui.internal.wizards.fragments  Thread[ModalContext,6,main]]
  javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
            at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:174)
            at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1649)
            at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:241)
            at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:235)
            at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1206)
            at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:136)
            at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:593)
            at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:529)
            at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:893)
            at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1138)
            at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1165)
            at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1149)
            at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:434)
            at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:166)
            at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1172)
            at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLConnectionImpl.java:234)
            at com.sap.ide.es.core.ui.internal.wizards.fragments.UrlValidationRunnable.getURLAsStream(UrlValidationRunnable.java:137)
            at com.sap.ide.es.core.ui.internal.wizards.fragments.UrlValidationRunnable.validate(UrlValidationRunnable.java:75)
            at com.sap.ide.es.core.ui.internal.wizards.fragments.UrlValidationRunnable.run(UrlValidationRunnable.java:55)
            at org.eclipse.jface.operation.ModalContext$ModalContextThread.run(ModalContext.java:121)
  Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
            at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:323)
            at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:217)
            at sun.security.validator.Validator.validate(Validator.java:218)
            at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:126)
            at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:209)
            at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:249)
            at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1185)
            ... 15 more
  Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
            at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:174)
            at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:238)
            at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:318)
            ... 21 more
  Has anyone ever consumed an external web service with SSL certificate security? How do you import this in your Web Dynpro project?
  Cheers!

  Hi Alain,
  I just checked on a newer NW environment (NW 7.2) and was presented an empty list as well... It seems the mapping procedure I described is deprecated since NW 7.11, and the modeled CAF application service is already exposed as a web service.
  You may want to have a look at http://help.sap.com/saphelp_nwce711/helpdata/en/43/f173947bbb025be10000000a1553f7/content.htm or http://scn.sap.com/message/7852996 for more info

• My Viewsonic monitor won't work with the Imac using the Mini Port to DVI adapter.

  My Viewsonic monitor won't work with the Imac using the Mini Port to DVI adapter. I also tried the HDMI to DVI adapter ane the Mac-Mini with same result. The monitor does work on my older Macbook Pro that has the DVI connector. Is it a Software/Driver issue ?

  Should be extremely simple, please carefully read Connect multiple displays to your Mac. If you still have problems then it's probably a cable issue that would be resolved by replacing the adapter cable. You should be using this adapter. If you are using a third party adapter that might be your problem!

• New ipod touch won't work with itunes 10.6.3 says it needs 11.1 but I cannot load that on my macbook using OSX 10.5.8 any way around this?

  New ipod touch won't work with itunes 10.6.3, says it needs 11.1 or newer but I cannot load that onto my MacBook running on OSX 10.5.8 - is there anyway around this?

  No. If your MacBook has an Intel processor you can update to OSX 10.6.8 and then install the latest iTunes.
  A 5G iPod with iOS 7 requires that if you have a Mac you have OSX 10.6.8 or later.
  You can get 10.6.8 here:
  http://store.apple.com/us/product/MC573/mac-os-x-106-snow-leopard

• TS1363 "An iPod has been detected but it could not be identified properly"  iPod Nano 7g and 3g won't work with Windows 8 PC. worked fine up until a month or so ago and now they are not recognized.

  "An iPod has been detected but it could not be identified properly"  iPod Nano 7g and 3g won't work with Windows 8 PC. worked fine up until a month or so ago and now they are not recognized.

  Hi cueball819,
  Thanks for using Apple Support Communities.  This article has steps to try if your iPods aren't recognized by iTunes or Windows:
  iPod not recognized in My Computer and in iTunes for Windows
  http://support.apple.com/kb/TS1369
  Cheers,
  - Ari

• Itunes updated and now it won't work.  I unstalled it and reinstalled the older version and it still won't open. Says the itunes library won't work with the older program. Help

  Itunes updated and now it won't work.  I unstalled it and reinstalled the older version and reinstalled a older version and it still won't open.  Says the itunes
  library won't work with the older program.  Please help

  It says it cannot removed the older version of iTunes.
  Doublechecking before proceeding ... what's the precise text of that message, please? (There's a couple of different ones I can think of that you might be getting.)

• I would like to update to Firefox 5.0.1, but I can't due to, too many things won't work with the version & will be disabled.

  I have wanted to update from 3.6.22, to 5.0.1, but can't do to the following reasons: I can't due to, too many things won't work with the version & will be disabled. They are: Microsoft. NET Framework Assistant 1.2.1, Iconix 3.90.1, HP Detect 1.0.5.1, Yahoo! Toolbar 2.3.5.201101200332202 (I don't care about Yahoo! Toolbar, because I don't use it!). As soon as these issues are fixed, I will be able to update, to the latest versions. These issues should be fixed & ready to work, before a new version is available. Thank you!

  Try using this extension to force compatibility.
  * https://addons.mozilla.org/en-US/firefox/addon/add-on-compatibility-reporter/
  Check and tell if its working.

• I have a Canon D60 camera, my raw files won't work with the raw converter in my Photoshop CS5. Do I need CS6?

  Photoshop CS5 won't work with the raw files from my new Canon D60 camera. Do I need CS6?

  A Canon EOS D60? It had support since Camera Raw version 1.0.

• FM transmitter won't work with my iPhone

  I bought a Premier FM transmitter from Auto Zone the other day. It has a 30-pin connector with an led panel that lights up when you connect it to an apple device. It's suppose to work with all 30-pin devices but doesn't work with my iPhone 4 (iOS 7.1.2). I have tried it with my iPod Touch 2g and two other iPhone 4's that belonged to my friends, and it worked with all three devices. Any explanation why it won't work with mine?

  "the Middle East" is a really big place. I suspect you bought a gray market hacked phone. Call Apple Care and give them the serial number. Maybe they can tell you if it's locked and to what carrier.

• I have an Airport Extreme Base Station and have recently upgraded to Mountain Lion. Now airport utility won't work with my base station so I bought a Time Capsule. For the life of me I can't make the substitution work and only see a blinking amber light.

  I have an Airport Extreme Base Station and have recently upgraded to Mountain Lion. Now airport utility won't work with my base station so I bought a Time Capsule. For the life of me I can't make the substitution work and only see a blinking amber light. Can anyone who has made this change offer some advice?

  apikoros wrote:
  The Utility transferred all of the AE's settings, so I still have to change the password, which leaves me with only 2 other questions, I think:
  1)  I assume it's just a matter of using the Utility, entering a stronger password and checking for it to be remembered in Keychain Access.  But do I have to  change the password for each individual unit-- the TC, the Extreme and both Expresses-- or will changing it just for the TC alone work for the entire network?
  Resetting the password you will need to do for each device... the utility cannot even see those old units.
  So you will have to do it for each one.. think it through.. because as you change passwords the others will lose connection.. so start from the express which are wireless extending .. change those first.. and go back up the chain.. as each one changes it will drop off the network.. until you reach extreme and change that. Then you might need to reboot the whole network to get everything talking again. If something goes wrong.. just pluck that one out of the mix and plug in ethernet.. reset and redo the setup. That is my preferred method anyway.. do everything in isolation one by one. By ethernet and then nothing goes wrong.
  2)  Who's the treasonous SOB who spilled the beans to you about the ICBM in my back yard?!?
  N.Korean hackers.
  [Edit] Whoops-- one more question:  I want to partition the TC's disk, but Disk Utility doesn't see it.  What do I need to do?
  You cannot partition a network disk. And apple provided no tools for it in the TC itself. You can pull the disk out and partition it but that voids your warranty. (although done with care who is to know).
  Look at Q3 here.
  http://pondini.org/TM/Time_Capsule.html
  Mixing TM and data on the TC is worth planning carefully. They don't necessarily sit happily together.

• RoboHelp for Word installed from RoboHelp 10 won't work with Word 2010

  I have a Help project created in RoboHelp for Word 8.  I recently upgraded from Word 2007 to Word 2010 and discovered that RH8 for Word won't work with Word 2010.  So I purchased RoboHelp 10 and have installed RoboHelp for Word from it.  Alas, RH for Word STILL won't work with Word 2010.  When I try to open my project, I get this message:
  Before I bought RH10, I live-chatted with an Adobe sales person who assured me it was compatible with Word 2010.
  BTW, I tried to roll back to Word 2007, but I was getting weird behavior running Word, so I have reinstalled Word 2010 and want to stay there.
  Any ideas?

  I have just installed Rh10 for Word on a new machine and initially I got this message.
  I wonder if you have followed those instuctions? I changed the setting to Enable All.
  The other possibility is what do you have set for the default version? If it is 2007 and that no longer exists on your machine, then Rh will not be able to proceed. The dropdown should show 2010
  See www.grainge.org for RoboHelp and Authoring tips
  @petergrainge

• Pogo won't play games java won;t work with firefox

  I was playing pogo and it came up to update Java. Did it and now can't play most of the games like canasta. Says java won't work with firefox.....it did before. try for 4 days not and no luck

  Java is working properly. Still not loading games

• Outlook Email script won't work with Reader 9.1

  The attached form was designed in ES 8.2 and has worked fine with Reader 8.0. The "properties defaults" tab is set for Reader 9.0 or better. However, upon recent upgrade to Reader 9.1, the Outlook Email script stopped working. I'm new to Livecycle and scripts and was hoping that someone had an easy fix?

  okay thanks. One more question. What script is used to activate the "read receipt requested" function in Outlook?
  Date: Wed, 12 Aug 2009 12:23:13 -0600
  From: [email protected]
  To: [email protected]
  Subject: Outlook Email script won't work with Reader 9.1
  Interesting .....it sounds like an issue in Reader. From a code perspective everything is good .....the code tells Reader's email service to communicate with the mail client. This could be where the issue is.
  You may want to post your question on the Acrobat forum and see if they know of anything .....or you can report the issue to Support and have them look into it. Maybe something was introduced into the 9.1 version.
  From a Designer perspective all is good.
  Paul
  >