Issue with self-signed Extensions

Similar Messages

• Anyone having issues with Self-Signed SSL-certs on mail servers?

  Can't get it to allow connecting via SSL to outgoing mail servers with self-signed certificates. Problem did not exist in earlier versions of OSX as far as I know.

  YES. I have a cert from lunarpages, where my accounts are hosted. I'm seeing two issues, and they are different for the different servers at lunarpages:
  1. Multiple logins from different machines --> problem
  2. Multiple accounts accessing same server --> problem
  So, with 1 account on one of lunarpages machines, I can have several machines running Mail with ssl on at the same time and get no problem (that is, once I've saved the certificate and marked it trusted). But as soon as another account (my wife's email on the same domain, for example) tries to access the same server, it gives me an ssl error, a choice to save that cert. and if I do then my account will generate the ssl error. Seems like only one account can have the certificate.
  On another account on a different lunarpages machine, I can't have several machines running Mail at the same time, only the first will get through and the rest will give an SSL error.
  Lunarpages says they can't find a problem, though my last email with them told me to use TLS rather than SSL. Of course, there's no way to specify that in Mail anyway, but I'd thought Mail automatically used TLS anyway, and I'm running the right ports (587 for smtp, 993 for incoming).
  Feels like it's an issue with Mail or the OS's handling of certificates. Any clues on a fix will be most appreciated as this is getting annoying. I've had to turn off SSL on my wife's and daughter's accounts just so that I can use it. And I have to quit Mail so that on the other account I can get my mail on my iPhone. Having to quit Mail on my main work machine is frustrating -- if I forget to do it I can't get mail.

• Issue with self signed certificates on jetdirect J7949E

  I'm having a baffling issue with certificates generated internally for use with some HP printers. I can create certificates and install them on J8003E model jetdirect cards and they work fine. When I try to install certs on any of the J7949E cards they fail with an invalid file message. This applies to the root cert as well.
  I'm using the Microsoft cert. authority to generate the files.
  The printers with the problematic jet direct cards are 4700 Color laserjets and the working models are 4015x monochrome laser printers. Has anyone had this problem and what was done to resolve it? I'm running the latest version of the firmware on the jetdirect cards but the problem existed with older versions as well.

  Ok, I've validated my html and I'm getting a few errors related to Angular. They're all one of two types of errors
  Error 1:
  <div ng-controller="ExampleController">
  Gets the following error:
  Attribute ng-controller not allowed on element div at this point.
  Error 2:
  <my-directive></my-directive>
  Gets the following error:
  Element my-directive not allowed as child of element div in this context. (Suppressing further errors from this subtree.)
  Error 1 is for any Angular related thing...ng-click, ng-controller, ng-show, etc.
  Error 2 appears where all my custom directives are.
  I did a comparison between the not-working extension and a working one that also uses Angular (without any custom elements). When I validated the working extension, it returned a bunch of Error 1's but no Error 2's (this is expected, seeing as there are no custom elements).
  To your question about dynamic HTML - there is none. All of the files are static after they're installed. I double checked this by running a diff-merge between the extension before and after it has been run once. They are exactly the same, so no files are changing.
  There are known issues with custom directives in older browsers like IE8 - http://www.befundoo.com/blog/angularjs-directives-in-ie8/
  Out of curiosity, I tried adding elements in the head, as described in the above blog, inside my extension. This did not have any effect, and the extension still fails.
  I'm considering rewriting my directives as attributes instead of elements, and seeing if that does it. That would take some time though, so if the above info helps narrow down the problem or raises other questions of yours, I'm all ears! Thanks again for all the replies!

• Issue with Self Signed Certificate Web Sites

  I tried searching, but wasn't really getting the answer or help I needed so I figured I would just start a new topic. At my work we have a test server that we use for development and we have a couple of Web Services on there that use Self Signed Certificates. At work, I have a PC (Windows 7) and a Mac Mini (OS X) both of which can connect to the Web Services just fine. But at home, I can't access any of the Web Services at all, my browsers and Xcode keep timing out. I know the Web Service is public, I've accessed it before from other machines outside of work it's just at home I can't. I have an iMac at home, with a linksys router and I don't know if it's a setting on my home computer or network that could be causing it but I don't even get the message in Safari, Chrome or Firefox that the site has a self signed or bad certificate so I know something isn't letting me communicate. Any help would be great (all of the answers I have found suggested to purchase a certificate, which in this case isn't appropriate since they are used for Development until we feel they are ready for production in which case we purchase the certificate). Thanks.

  new information:
  I tried an other lumia800, the https page worked.
  The difference of the two phone was only the language
  My phone language was english (US), the other was hungarian.
  After that, I switched my phone language settings to hungarian, and tada... the self signed https page worked.
  I switched back to english(US) and stopped working.
  than I tried english(GB) and worked again.
  I did not try other languages, but it looks, if I use english-US language, I cannot see any invalid certificated page
  In other language settings, there is no problem.

• Error Re-opening Self-Signed Extensions on OS X

  I offer several free and paid self-signed extensions through Add-Ons. Some users have been reporting a peculiar error: users are usually able to open the extension once but when they close and re-open the extension again, the panel is completely empty.
  From info from users, this is showing up on OS X (reported in 10.9.5) both in CC 2013 & 2014. Although it's not happening consistently across all machines with those same specs. The machine reporting the error, however, it happens consistently.
  We've discovered two work-arounds:
  1. Uninstalling and re-installing the extension will allow it to open it once (but then it reverts to the empty panel after closing and re-opening)
  2. Changing the ~/Library/Preferences/com.adobe.CSXS.4.plist file by adding PlayerDebugMode, of type String, and value 1 then restarting OS X also fixes the issue.
  Neither of these work-arounds are ideal. Has anyone else had this problem? Are there any solutions?

  Emailed Adobe and they said that if you change any files WITHIN the extension's folder itself, that will break the signing. I'm now saving preference files to the Application Support folder (SystemPath.USER_DATA) and it works!

• ASA5505 IPSEC only with Self-Signed certs

  Hello all,
  I have limited Cisco training and have been tasked with a pilot project. We have scavenged the ASA from another department, but I have no access to support. It's running ASA v9.1 and ASDM 7.1 . If all goes well I'll be sent on training and we will be purchasing a nice 5520.
  So I've scoured the internet for an easy guide to do as my tittle says, but am having major difficulties. I can find lots of support for SSL VPN with Self-signed or IPSEC VPN with externally signed certs but I can't get ASA self-signed IPSEC IKEv2 only with certificate authentication. Also, to make it even worse, I need to provide the user with the software, profile and certificate by hand. No web-access portal or download.
  If you know where I can get good setup guide for this type of use please by all means save me here . If this isn't even possible I'm cool with that, just let me know.
  Thanks fo any help you can provide
  Jay

  If the ASA is using a certificate issued by a CA that is in the client's trusted root CA store, then the ASA identity certificate does not need to be imported by the client.
  That's why it's generally recommend to go the route of using a well-know public CA as they are alreay included in most modern browsers and thus the client doesn't need to know how to import certificates etc.
  If you are using a local CA that is not in the client's trusted root CA store to issue your ASA identity certificate or self-signing certificates on the ASA then you need to take additional steps at the client.
  In the first case, you would import the root CA certificate in the trusted root CA store of the client. After that, any certificates it has issued (i.e the ASA's identity certificate) would automatically be trusted by the client.
  In the second case, the ASA's identity certificate itself would have be installed on the client since it (the ASA) is essentially acting as it's own root CA. I usually install them in my client's Trusted Root CA store but I guess that's technically not required, as long as the client knows to trust that certificate.

• E-Mail Setup fails with self-signed SSL certificat...

  Hi, one of my e-mails is with a small provider who just moved the mail server to Imap and SSL. In Thunderbird, everything works fine, setup on my Nokia C-6-fails with an unspecific error message (and trows away the settings). I asked the provider, and it seems that the problem comes up because the Nokia e-mail application doesn't asked me if I want to accept the certificate but instead rejects it. Is there a workaround to this problem? Is there a way to setup the mail account without using the wizard? Or to take over the settings from Thunderbird? Or a way to put the certificate in the right place manually? In Opera mobile I have no trouble with self-signed SSL certificates. Thanks Cave

  Any one around who can help? Self-Signed certificates are rather common, after all. I would be grateful cave

• Export extension to ZXP with self-signed certificate

  Hello,
       I am having this issue with Extension Manager not allowing the install of an extension exported from Extension Builder with a self-signed certificate. It always says that the signature is invalid, even with the sample projects exported packages. I am on Mac OS Snow Leopard. Anyone else experiencing this ?
  Regards.

  Hello,
       I am having this issue with Extension Manager not allowing the install of an extension exported from Extension Builder with a self-signed certificate. It always says that the signature is invalid, even with the sample projects exported packages. I am on Mac OS Snow Leopard. Anyone else experiencing this ?
  Regards.

• Self signed Extension not visible in Indesign CC although installed in Extension manager CC

  I have a HTML Extensions which I self signed (by creating a self signed certificate) using ZxpSignCmd. I exported my Extension in ZXP format
  and it got installed under Indesign CC 32 bit.
  But when i open indesign and check for my extension, I cannot find it under Extensions Tab.
  Pleas note that when I copy the ZXP contents in the "C:\Users\CS47\AppData\Roaming\Adobe\CEPServiceManager4\extensions", It appear in Indesign CC.
  But i need to install it using Extension manager.
  I can't find another thread with a similar issue so please let me know how to deal with this.

  I have a HTML Extensions which I self signed (by creating a self signed certificate) using ZxpSignCmd. I exported my Extension in ZXP format
  and it got installed under Indesign CC 32 bit.
  But when i open indesign and check for my extension, I cannot find it under Extensions Tab.
  Pleas note that when I copy the ZXP contents in the "C:\Users\CS47\AppData\Roaming\Adobe\CEPServiceManager4\extensions", It appear in Indesign CC.
  But i need to install it using Extension manager.
  I can't find another thread with a similar issue so please let me know how to deal with this.

• Mail App Not Working with Self-Signed Certificates

  First and foremost, I apologise for starting another thread that is 90% similar to others but I wanted to avoid falling into an existing context.  Like may others, I am having issues with the Mail App in Mavericks but I have an email account other than G-Mail.
  That being said, here is the issue I am having.  Until recently I never had an issue sending and receiving email from various accounted.  My Internet provider, an Exchange account, even a G-Mail account.
  Yesterday, my Web hosting provider issued a new (self-signed) certificate as the old one had expired (which was also a self-signed certificate).  While I am able to still receive messages, I am no longer able to send any.
  I have tried numberous possible solutions to no avail.  I have removed and readded my email account, I have refreshed my SMTP settings, I have removed all semblence of the account from my Key Chain, added the Certificate manually with full trust, and I have even flushed the caches from my ~/Library/ folder.  The last one perked up the Mail App but did not restore my ability to send messages from my Web provider's SMTP server.
  I suspect this is a bug in the Mail App but I'm hoping I can find a few last solutions before I file a bug report.
  In the meantime, I am using another outgoing server from my Internet provider.  It will do but for consistency I'd much rather use the outgoing server that came with the email account in question.
  I am all but convinced it is the Mail App as Thunderbird is able to use the SMTP server just fine and I am still able to send messages using the exact same settings on my iPhone and iPad.
  In case it helps, I am using a Early 2011 MacBook Pro with the latest Mavericks update (which ironically was meant to solve some issues other users had with the Mail App).
  On a related note, I wish I had stayed on Snow Leopard.  I did not have a single issue with that OS.  Now I feel like I am working on Windows Vista again and I am waiting for the Apple version of Windows 7 to set things right.

  MrsCDS wrote:
  I am using an iPhone 6 plus on iOS 8.1 and suddenly my Yahoo email account will not populate to my Mail app. I have deleted and re-added the account and also re-booted the phone with no luck. I get the spinning wheel up by my Wi-Fi signal that suggests it's attempting to do something, but the bottom of the Inbox only says "Updated Yesterday." Has anyone else experienced this or can someone, especially an Apple employee, tell me how to fix this?
  There is no Apple in this user to user technical forum, if you want an Apple employee you would need to take your phone to the Apple store.
  What happens when you switch to using cellular data?  Does your email update?
  FYI - Yahoo email account is notoriously bad, you can try their app.

• Accessing websites running on non-standard ports or with self-signed ssl certs?

  I've got some sites running using self-signed ssl's that also run on non-standard ports. Firefox home doesn't seem to open these pages it just sits there with the spinner loading and a blank screen...
  Anyone else noticed this?

  If the ASA is using a certificate issued by a CA that is in the client's trusted root CA store, then the ASA identity certificate does not need to be imported by the client.
  That's why it's generally recommend to go the route of using a well-know public CA as they are alreay included in most modern browsers and thus the client doesn't need to know how to import certificates etc.
  If you are using a local CA that is not in the client's trusted root CA store to issue your ASA identity certificate or self-signing certificates on the ASA then you need to take additional steps at the client.
  In the first case, you would import the root CA certificate in the trusted root CA store of the client. After that, any certificates it has issued (i.e the ASA's identity certificate) would automatically be trusted by the client.
  In the second case, the ASA's identity certificate itself would have be installed on the client since it (the ASA) is essentially acting as it's own root CA. I usually install them in my client's Trusted Root CA store but I guess that's technically not required, as long as the client knows to trust that certificate.

• Ssl_error_internal_error_alert error in firefox when connecting to an internal website with self signed certificate.

  Firefox 26.0 . The website is running on tomcat 7 server . Using java key store .java version "1.6.0_29"
  Can test the site with openssl s_client and response seem ok.
  SSL handshake has read 2335 bytes and written 303 bytes
  New, TLSv1/SSLv3, Cipher is EDH-RSA-DES-CBC3-SHA
  Server public key is 4096 bit
  Secure Renegotiation IS supported
  SSL-Session:
  Protocol : TLSv1
  Cipher : EDH-RSA-DES-CBC3-SHA
  Session-ID: 52B896D8E3B7D0B1A03C5D2E5FF8B594D6AA74E94CB193E24685A041C5BEBF3A
  Session-ID-ctx:
  Master-Key: 1063AB71B3389D139FD7DD490FE3DF2188FA24B5E090390D2A899B32E2895B1D7A093590BE8D6FCDEFD22ACF10D94544
  Key-Arg : None
  Start Time: 1387828953
  Timeout : 300 (sec)
  Verify return code: 18 (self signed certificate)
  closed

  Hello,
  Can you please confirm what the issue is? Are you not able to setup a SSL connection to the internal website running on Tomcat. If so, have you tried installing the root CA certificate into Firefox? You can do that by going to Firefox -> Preferences -> Advanced -> View Certificates -> Certificate Authorities and then importing the root CA certificate.
  Please check this and let us know if this helps in resolving the connectivity issue. Though, I am a bit surprised that the connection is not getting established. Typically, Firefox would warn you if you would like to continue with the connection. Are you not seeing this warning?
  Thank you

• How to issue a self-signed certificate to match Remote Desktop Gateway server address requested

  I have an RDG server named gw.domain.local with port 3389/tcp forwarded from
  gw.example.com.
  Using RDGM snap-in I created a self-signed SSL certigicate with FQDN gw.example.com.
  But when I connect over RDP from outside the local network I'm getting an error:
  Your computer can't connect to the computer because the Remote Desktop Gateway server address requested and the certificate name do not match
  Because certificate subject name is gw.domain.local indeed.
  So there question is: how to issue a certificate properly, or how to assign an existing one the name to match?

  Hi,
  Thanks for your post in Windows Server Forum.
  The certificate error which you are facing seems like certificate mismatch error, something like the security certificate name presented by the TS Gateway server does not match the TS Gateway name. You can try reconnecting using the FQDN name of the TS Gateway
  server. You can refer below article for more troubleshooting.
  TS Gateway Certificates Part III: Connection Time Issues related to TS Gateway Certificates
  And for creating a SSL certificate for RD gateway, you can refer beneath articles.
  1.  Create a Self-Signed Certificate for the Remote Desktop Gateway Server
  2.  Obtain a Certificate for the Remote Desktop Gateway Server
  Hope it helps!
  Thanks,
  Dharmesh

• Synching Issues with Self-Paced Learning and Embedded Flash Files

  Hi Everyone,
  I'm having some issues with my files not properly synching or displaying when Self-Paced Learning is active.
  Here is my set-up:
  Captivate 5
  5 separate Captivate files combined using the Aggregator
  Each Captivate file is about 15 slides
  Each slide contains an audio file (for closed-captioning) and a single SWF file - the content is all created with Flash and then inserted into Captivate using Insert > Animation
  Each SWF file is back 1/10 of a second from the beginning of the Cap timeline (otherwise there are rewind issues when the user selects the slide they are currently viewing from the ToC)
  Each embedded SWF has the beginning and ending fade built into it; Captivate is not doing any fading
  Synch to Project is selected for each embedded SWF (although it doesn't seem to work all the time)
  Self-Paced Learning is active, as well as, Enable Navigation
  It is not being loaded to an LMS or using any built-in Captivate quiz features.  These are instead custom built AS3 Flash files that are embedded.
  Windows 7, 4GB RAM, 1GB Video Card, High-end Processor, etc... a beast.
  The Issue:
  When the user opens the course, views it for a while and then closes it and returns it will display the first slide of the course for a moment before jumping to the bookmarked slide.  This slight timing misstep causes the bookmarked slide to get out of synch.  It will sometimes not display the bookmarked slide at all or it will cut-off a small bit from the end of the slide (even with Synch to Project active).  It sometimes works fine but randomly will break.  The course is set to 100% preload and nothing is being loaded from an external location.  It seems to work fine until Self-Paced Learning is activated.
  I don't think this is a common development approach for Captivate but it has been very successful with some clients.  Has anyone encounted similar issues or does anyone have some suggestions that might resolve this problem?
  Thanks!
  Greg

  It's been mentioned many times on this forum that nesting Captivate SWFs inside other Captivate SWFs gives rise to all kinds of strange issues.  Captivate was not designed to work this way. If you choose to do it, and you encounter issues (as you have done) there's usually NOT a lot you can do.  There are just too many ways the SWFs can get into bun fights over which one does what.
  I suggest you rethink your approach to avoid nesting.

• Issue with "at sign" - @

  I have tried to create a databaselink to a SQL SERVER but I'm facing issues with the username.
  When I use the following command the dblink is created but I am unable to connect to the dblink:
  CREATE DATABASE LINK mydblink
  CONNECT TO *"[email protected]"* IDENTIFIED BY "password"
  USING 'tripoint';
  When I test the dblink I receive the errors *ORA-01017: invalid username/password; logon denied. [Microsoft][ODBC SQL Server Driver][SQL Server]Login failed for user *'thiagobarnabe'*. {28000,NativeErr = 18456}* and ORA-02063.
  If I use the following command I do not receive any error, it works perfectly:
  CREATE DATABASE LINK mydblink
  CONNECT TO "ThiagoBarnabe" IDENTIFIED BY "password"
  USING 'tripoint';
  It is important to notice that in both cases I'm using username and password enclosed by double quotes (") and both usernames and passwords are correct and exists in my SQLServer. In addition, in the error message we can see that the unrecognized user is what precedes the "at sign". I read Oracle documentation, tried to find any solution but so far I didn't find anything able to help me.
  Is it possible to use users with at sign or not?
  I would apreciate your valuable comments.
  Edited by: user12833006 on 14/01/2013 04:33

  There's a bug (bug 16168452 - USERNAME WITH "@" SIGN CAN'T LOG INTO SQL SERVER USING THE GATEWAY) logged for 11.2.0.3 DG4MSQL gateways that the at sign can't be used in a username. The bug is still open and under investigation. It was already confirmed that the issue happens also with DG4ODBC 11.2.0.3 and we have to wait for a fix.
  Edited by: kgronau on Jan 15, 2013 7:55 AM
  In an earlier release for 11.1 a fix was rejected (Bug 7356433: DG4ODBC REMOTE DB USERNAME AS EMAIL ADDRESS FAILS TO CONNECT) as it interferes with the @ handler using internally in OCI. But now as MS started with windows 8 to use the email like naming method it might change and the issue might be fixed.