Need clarification on the authentication process in JSSE

I would like to have an authentication process that goes something like this:
A connects to B
A gets a certificate from B
A prompts its user to ask if they wish to accept it
A forges the connection and keeps the cert in a store so it wont have to prompt the user later
From my reading of the JSSE documentation, all the authentication steps happen in the handshake? So how do I add my own custom code to do things like prompting the user for input in the middle of the handshaking?
or do I send the certs across a non secure connection and handle this protocol myself?
thanks for any clarification

Well I figured it out, so if anyone is curious, the trick is to establish a regular connection through a regular socket, do your thing there, then wrap SSLSockets around the regular socket on each side, setUseClientMode(false) on one of the SSLSockets, and yer set.
shrug
do I win my own Duke points back now? =)

Similar Messages

  • Need clarification regarding the test cable-diagnostics tdr command

    Hello,
    I've read about the test cable-diagnostics tdr command but I need clarification on the examples listed below to make sure that I am providing the right answer to my co-workers.
    Example 1:
    CXXX7SW17#show cable-diagnostic tdr int g0/20
    TDR test last run on: July 16 10:23:00
    Interface Speed Local pair Pair length        Remote pair  Pair status
    Gi0/20    auto  Pair A     N/A                        N/A                Normal
                           Pair B     72   +/- 10 meters  N/A                Open
                           Pair C     75   +/- 10 meters  N/A                Short/Crosstalk 
                           Pair D     74   +/- 10 meters  N/A                Short/Crosstalk
    Does this example mean that there's a cable length issue in the line which is causing the device that it's connected to not to work properly?
    Example 2:
    CXXX2SW140#show cable-diagnostics tdr int g0/21
    TDR test last run on: July 16 09:16:22
    Interface Speed Local pair Pair length        Remote pair Pair status
    Gi0/21    100M  Pair A     N/A                      Pair A           Normal
                              Pair B     N/A                      Pair B           Normal
                              Pair C     N/A                     Pair C           Normal
                              Pair D     N/A                     Pair D           Normal
    Does this example state that the cable line is okay for use?
    Example 3:
    CXXX1SW19#show cable-diagnostics tdr int g0/22
    TDR test last run on: July 16 06:36:53
    Interface Speed Local pair Pair length            Remote pair Pair status
    Gi0/22    auto    Pair A       1    +/- 10 meters  N/A               Open
                              Pair B     39   +/- 10 meters   N/A               Open
                              Pair C     72   +/- 10 meters   N/A               Open
                              Pair D     1    +/- 10 meters    N/A               Open
    Does this example mean that there isn't a device connected on the other end? No pin-contact?
    Thank you very much for any help you could provide.
    S

    I found this article here at supportforums that seemed like the best explanation I've read so far for TDR info.
    Hope that helps.

  • I need to break the install process

    Hi,
    I recently tried to run an archive and install on my G5 Mac - Dual 2ghz - 1 gb ram OSX Version 10.4.11.
    Unfortunately, I am missing the "correct" version of disk 2. As a result, I cannot continue with the install. Nor can I do anything with this drive, since it goes straight into the installer and asks for disk 2.
    I can put the drive in another identical Mac G5 and see all of the data on the drive including the "Previous Versions" folder, and the "new" system folder.
    If I delete the "new" system folder and put it back into Mac-A I get a Kernal panic - missing drivers screen.
    So, either
    A: How do I break the boot process to start over with a different set on the original machine; or
    B: what file do I need to delete from the hard drive (using the second machine) to allow me to restart the process (using a different OS ver.?
    Thanks!

    You really can't break the installation process midstream. You can attempt to fix a mistaken install using an Archive and Install, and combo update back to the version you were at last, but that's dependent on their being enough space on your system*:
    http://www.macmaps.com/diskfull.html
    After an archive and install, you can migrate data back to your new system that is usable. Frequently added drivers and plugins are not usable, but applications may be usable from a previous system.
    This is why it is so important you backup your data before installing anything*:
    http://www.macmaps.com/backup.html
    If you haven't you can backup even a shoddy system and restore elements such as documents, but don't expect anything else to be usable.
    - * Links to my pages may give me compensation.

  • Need clarification on the Recycling Program

    Hi everyone, I just need some clarification on the iPod Recycling Program, as I have never done it before. I'm want to use the Recycling Program to get a discount on the iPod Touch 5g. Now my question is, and it's probably a stupid question, but if I bring in my four older iPods I have laying around does Apple give me a %10 discount on EACH of them, adding up to %40?

    The first iPod had the firewire port on the top & the scroll wheel actually moved.
    I guess my first iPod was a 3rd Generation:
    http://www.apple.com/pr/products/ipodhistory/

  • Need clarification on the addition of device driver in Installer

    I am a newbie and am building my first application (LabView 8.5.1) and need an installer with everything in it. I am unclear about what is needed for the device drivers for the DAQ board. I am using a USB6009 OEM NI DAQ.
    Do I need to include the NI-DAQmx 8.7 that I see in the Additional Installers section of the Installer builder? Were the device drivers included in the original application build or do I also need to include the driver somewhere in the installer? I see under "Hardware Configuration" in the Installer builder that I can include a "Hardware Configuration File" but I am not clear on how to do that or if it is needed. Is that how the driver gets included? 
     Please  also explain how to ensure that the hardware is attached (via USB) at the proper time for the installation process or can that take place anytime after the installation.
    I am building the application on a system with Windows 2000 but the target machines will most likely be XP, is that an issue?
    I am a Chemist and not an Engineer so you need to use small words or define any big words that I have not used above.  Any help is greatly appreciated.

    Yes, you need to add DAQmx to your Installer for Supporting of your device on target PC.
    LabVIEW Portal

  • I need to review the existing process chain

    Hi Folks,
    I need to review the existing hte process Chain which is running in the live system since 1 year.
    My intention is what i need to considear while reviewing the process chain and i need to provide the some suggestion after review of the all chains.
    Can any one have SAP Notes or SAP help info on this,
    Thanks,
    Ven.

    Hi,
    Check in the following tables for Process Chaibn logs
    RSEVENTCHAIN ----Event Chain Processing Event Table
    RSEVENTHEAD -----Header for the event chain
    RSEVENTHEADT -----Header for the event chain
    RSPCCHAIN---------- Process chain details
    RSPCCHAINATTR------- Attributes for a Process Chain
    RSPCCHAINEVENTS------- Multiple Events with Process Chains
    RSPCCHAINT--------------- Texts for Chain
    RSPCCOMMANDLOG--------- System Command Execution Logs (Process Chains)
    RSPCLOGCHAIN---------- Cross-Table Log ID / Chain ID
    RSPCLOGS------------- Application Logs for the Process Chains
    RSPCPROCESSLOG------------- Logs for the Chain Runs
    RSPCRUNVARIABLES---------- Variables for Process Chains for Runtime
    RSPC_MONITOR----------- Monitor individual process chains
    Thanks
    Reddy

  • Need Clarification for the Attribute Property (Calculated)

    hi
    I am new to Web Dynpro and i am in need of clarification regarding the Attribute
    Property - Calculated
    Thanks in Advance
    Regards
    S.Chandran

    Hi,
    Calculated Property in webdynpro is required when you want to handle node context attribute programmatically.
    When you say Context Attribute as True, it generates two methods, Setter and Getter Method for that attribute.
    In getter method you will be getting one ‘element’ it is the context node, where you created attribute. These methods will be called automatically.
    For more Info check this link
    Related to calculated property
    Hope that helps

  • Do I need to stop the SDM process on UNIX for backups?

    We are running Netweaver 04 SP13 on HPUX.  Can the SDM process stay running or do we need to shut it down during backups?
    Thanks!
    Steve

    As the technical operations manual stated:
    Create a backup of the SDM installation directory /usr/sap/<SID>/JC<inst_nr>/SDM.
    Make sure the SDM is stopped during backup.
    That should be clear enough...
    Regards,
    Benny

  • Apple seriously needs to fix the review process

    I know this has been discussed ad nauseam but I'm really frustrated about how reviews are handled by Apple.
    I mean, what gives? Are they treating us like dirt because A) they don't care because devs are rushing to the iPhone platform or B) they are overwhelmed by submissions?
    One of my apps has been in review for over 2 weeks (I know... some have been over a month so why am I complaining?) and there's no way to know when it's made available (if ever... Apple criteria's seem to change from day to day). 1 hour? 1 day? 1 week? 1 month? Who knows!
    Every day my app stays "In Review", I'm losing money from potential sales. It would be nice to get at least an estimate of when your app will be reviewed. Or, at least Apple could tell us a bit more about the review process so we understand how it works and don't panic when apps don't get reviewed before several weeks.
    It's sad because the iPhone platform is just terrific but what I dislike is the fact that once you send your app for review, you lose control over it. The App Store does have it's advantages, but I think it's getting sour and while launching a desktop app might be more demanding money-wize and marketing-wize, at least you keep control of your distribution and you can release your product when you see fit, at not have it standing in review forever without knowing when you'll see a return on your investment.
    The lact of information is very unfortunate and I just hope that the answer to my first question in B).

    Does anyone have a phone number to call? Hard to believe paying developers have nobody to call.
    I don't mind waiting, but I sure as **** want to know if there is something in my app that they are waiting on ME for.
    It wouldn't kill them to have each guy in the review phase check a single box to say what he has reviewed and then notify you by email.
    Has anyone reading this been able to talk to anybody at Apple, just to make sure that they aren't waiting for something to be added to the upload or fixed in the binary?
    I submitted 2 apps - the one on the 24th sailed through and has sold 150 copies.
    The one on the 26th is still sitting in review.

  • Need info about the integration Process.

    HI ,
    I would like to know about the different components of Integration Process like about the Receiver etc..
    and how do we relate the properties of each component with the container.
    Thanks in advance

    hi Syed
    An integration process is an executable, cross-system process for processing messages. In an integration process you define all the process steps that are to be executed and the parameters relevant for controlling the process.
    You implement integration processes when you want to define, control, and monitor complex integration processes that extend across enterprise and application boundaries. The design and processing of integration processes is also known as cross-component Business Process Management (cross-component BPM, ccBPM).
    http://help.sap.com/saphelp_nw04/helpdata/en/68/6bfd3f9149ca42e10000000a1550b0/frameset.htm
    follow this thread to learn how to define an IP
    http://help.sap.com/saphelp_nw04/helpdata/en/68/6bfd3f9149ca42e10000000a1550b0/frameset.htm
    You use a correlation to assign messages that belong together to the same process instance. A correlation joins messages that have the same value for one or more XML elements. A correlation is therefore a loose coupling of messages: at design time, it enables you to define which message a receive step must wait for, without knowing the message ID
    http://help.sap.com/saphelp_nw04/helpdata/en/68/6bfd3f9149ca42e10000000a1550b0/frameset.htm
    regards
    sandeep
    If helpful reward points

  • Need clarification on the Hyperion stuff

    I have some clarification on the following question which i came in certification last 2 days back.
    A calcualtion is performed on a database for which create block on equation is off.The command SET CREATEBLOCKONEQ ON is issued immediately before an equation in the script.which statements accurately describe when blocks will be created?
    1) blocks will be created ONLY when the equation assigns non - constant values to members of sparse diemension.
    2)blocks will be created only when the equation assigns constant values to memebers of sparse dimension
    3)blocks will be created when the equation assignes either constant or non constant values to a members of sparse dimension
    4)No blocks will be created.
    please clarify on the above.

    Vinith,
    I suppose I could ask the obvious question: How do you happen to have a question from an Oracle certification test? I don't have access to those questions. How do you?
    In the interests of actually providing (what I at least believe) the right answer, I think this thread is confusing what the docs say with what Essbase does.
    If you use SET CREATBLOCKONEQ ON, the docs state that Essbase will create a block even with a non-constant assign. But Essbase will also create a block with a constant assignment -- it always does that. That makes the third answer correct.
    Regards,
    Cameron Lackpour

  • Need clarification using the selection tool

    Hi all,
    I have some strange (to me) occurrences while using the 'selection tool'...
    Explanation:
    I'm using PSE11 on a Win 7 (64) PC.
    What I want to do is to create a new pic from an existing pic.  The existing pic's background is unsuitable for what I want.  But the FG is what I need.  I thought that selecting the FG object and placing it into a new pic would be what I needed using the <quick selection tool>.
    To do this, I am trying to use the <quick selection tool>.  I've had varying degrees of success using it.  One main thing I don't understand & pretty much renders my task useless, is the fact that whenever I use <refine edge> so that I can refine my edge selection, my pic is immediately lost or taken away.  Since I have no idea as to what's happening, I am forced to close the pic (W/O saving changes, of course) & then re-opening the pic.  All's well until I use the <refine edge> button again, then, my pic disappears AGAIN!
    There are a few more details about this <selection tool> that I'm muddy on.  Is there something where I can read more about its use?  I would love to know more, but how?  Where?
    I am not a constant user of PSE, rather,  I only use it on occasions.  Normally, I use its scanning features.  I may play around with a few other features, but I also know that PSE offers many other powerful features, I rarely, if ever, use.

    There are many selection tool and way to extract a subject.  There are more way in Photoshop then in Photoshop Elements you should ask over in the Elements forum to get answers suitable for elements users.  You may get answers here that are not possible to use in Elements. Photoshop Elements

  • Need clarification on the concept of "reset logs"

    Hi,
    When the database is in Archive log mode and once crashed will be recovered using the below command :
    SQL> startup nomount
    SQL> Alter database recover automatic using backup controlfile until cancel;
    Once the database is recovered, we give the below command:
    SQL> recover cancel;
    After the above steps, we have to perform below command which I am not able to understand.
    SQL> alter database open reset logs;
    I am not able to appreciate the purpose of resetting the logs...why not we allow the database to proceed with the log file sequence.
    Any information on the "reset logs" concept would be helpful to me.
    Thanks in advance
    Vineela

    hi vineela,
    this is the portal content management forum. for your database question please use the database forums:
    http://forums.oracle.com/forums/index.jsp?cat=18
    thanks,
    christian

  • Need clarification on the sar -u command details

    I have few scripts scheduled to run at the same time in the cron job.
    The scripts are to basically executed to capture the following:
    1. vmstat 1 10
    2. mpstat 1 10
    3. iostat 1 10
    4. prstat 1 10
    5. sar -u 1 10
    6. sar -r 1 10
    I found that the first record captured has less %idle compared to the other 9 times as per the sample below. Can anyone tell me if this is normal or is there anything wrong? Could this be due to the fact that when we run all the above cron job together, the CPU utilization is affected for the first reading? Please help.
    SunOS DCWEBFES03 5.9 Generic_118558-04 sun4u 09/08/2006
    23:00:00 %usr %sys %wio %idle
    23:00:01 7 14 0 79
    23:00:02 0 0 0 100
    23:00:03 0 2 0 98
    23:00:04 0 1 0 99
    23:00:05 0 1 0 99
    23:00:06 0 1 0 99
    23:00:07 0 1 0 99
    23:00:08 0 1 0 99
    23:00:09 1 0 0 99
    23:00:10 0 1 0 99
    Average 1 2 0 97
    Fri Sep 8 23:10:00 WIT 2006
    SunOS DCWEBFES03 5.9 Generic_118558-04 sun4u 09/08/2006
    23:10:00 %usr %sys %wio %idle
    23:10:01 5 14 0 81
    23:10:02 0 1 0 99
    23:10:03 1 0 0 99
    23:10:04 0 1 0 99
    23:10:05 0 0 0 100
    23:10:06 0 1 0 99
    23:10:07 0 1 0 99
    23:10:08 1 1 0 98
    23:10:09 0 2 0 98
    23:10:10 0 1 0 99
    Average 1 2 0 97
    Fri Sep 8 23:20:00 WIT 2006
    SunOS DCWEBFES03 5.9 Generic_118558-04 sun4u 09/08/2006
    23:20:00 %usr %sys %wio %idle
    23:20:01 8 11 0 81
    23:20:02 0 1 0 99
    23:20:03 0 1 0 99
    23:20:04 0 1 0 99
    23:20:05 0 1 0 99
    23:20:06 0 0 0 100
    23:20:07 0 1 0 99
    23:20:08 0 0 0 100
    23:20:09 0 1 0 99
    23:20:10 0 1 0 99
    Average 1 2 0 97
    Fri Sep 8 23:30:00 WIT 2006
    SunOS DCWEBFES03 5.9 Generic_118558-04 sun4u 09/08/2006
    23:30:00 %usr %sys %wio %idle
    23:30:01 7 12 0 81
    23:30:02 0 1 0 99
    23:30:03 0 1 0 99
    23:30:04 0 2 0 98
    23:30:05 0 1 0 99
    23:30:06 0 0 0 100
    23:30:07 0 1 0 99
    23:30:08 0 1 0 99
    23:30:09 0 1 0 99
    23:30:10 0 1 0 99
    Average 1 2 0 97
    Fri Sep 8 23:40:00 WIT 2006
    SunOS DCWEBFES03 5.9 Generic_118558-04 sun4u 09/08/2006
    23:40:01 %usr %sys %wio %idle
    23:40:02 9 12 0 79
    23:40:03 0 1 0 99
    23:40:04 0 1 0 99
    23:40:05 0 1 0 99
    23:40:06 0 0 0 100
    23:40:07 0 0 0 100
    23:40:08 0 1 0 99
    23:40:09 0 1 0 99
    23:40:10 0 1 0 99
    23:40:11 0 0 0 100
    Average 1 2 0 97
    Fri Sep 8 23:50:00 WIT 2006
    SunOS DCWEBFES03 5.9 Generic_118558-04 sun4u 09/08/2006
    23:50:00 %usr %sys %wio %idle
    23:50:01 6 12 0 82
    23:50:02 2 3 0 95
    23:50:03 0 2 0 98
    23:50:04 0 2 0 98
    23:50:05 0 0 0 100
    23:50:06 0 1 0 99
    23:50:07 0 0 0 100
    23:50:08 0 1 0 99
    23:50:09 0 1 0 99
    23:50:10 0 1 0 99
    Average 1 2 0 97

    Its normal. The reason being that the first output from each command will be a summary of the records from boot til the command was run. Whereas the lines that follows will show the different between the first run and the second run.
    In case that doesn't make sence:
    23:00:01 7 14 0 79 <== this is the average since boot
    23:00:02 0 0 0 100 <== average since first run
    23:00:03 0 2 0 98 <== average since second run
    23:00:04 0 1 0 99 ... etc ...
    23:00:05 0 1 0 99
    23:00:06 0 1 0 99
    23:00:07 0 1 0 99
    23:00:08 0 1 0 99
    23:00:09 1 0 0 99
    23:00:10 0 1 0 99
    7/M.

  • How does the LDAP authentication process?

    Hi All,
    In SAP KB1384915(https://bosap-support.wdf.sap.corp/sap/support/notes/1384915), BOE client authentication's process is described as follows:
    1. The BOXI SDK calls the login on the BOXI client plugin (passing username & password).
    2. The BOXI client plugin passes the username and password to the third-party authentication server. This may be an LDAP server, or a Windows Active Directory server, or any other server that the BI Platform supports.
    3. The third-party authentication server authenticates the credentials. This generates a security buffer needed by the BOXI server-side authentication plugin.
    4. The SDK passes the security buffer to the CMS, which forwards it to the server-side plugin.
    At this point the handshake process may be finished, or it may continue
    5. This exchange continues until the server-side authentication system indicates that the authentication process has completed.
    Authentication always ends on the server side.
    6. The user has been authenticated. The CMS must verify that the user is a member of a mapped group before the logon process can complete.
    Question about LDAP auth,
    I think that the client plugin doesn't know LDAP server's hostname & portnumber at the time of step2.(BOE server only knows it)
    So I think, the client will access to BOE server to get the LDAP-related informations before the step.
    Would you please tell me whether the following process is correct?
    1. The BOXI SDK calls the login on the BOXI client plugin.
    2. The client plugin gets LDAP-related information (LDAP hostname, portnum, base DN etc) from BOE server.
       At this step, client plugin DOESN'T pass the username&password to BOE Server. Only get informations.
    3. The client plugin passes the username and password to the LDAP server.
    4. The LDAP server authenticates the credentials. This generates a security buffer needed by the BOXI server-side authentication plugin.
    5. The SDK passes the security buffer to the CMS, which forwards it to the server-side plugin.
       At this point the handshake process may be finished, or it may continue
    6. This exchange continues until the server-side authentication system indicates that the authentication process has completed.
       Authentication always ends on the server side.
    7. The user has been authenticated. The CMS must verify that the user is a member of a mapped group before the logon process can complete.
    Thanks&regards,
    Tadashi

    Hi,
    in a BOE Environment the CMS does all of the authentication processes. So i would say that the Client passes the LDAP informations entered by the user to the CMS and the CMS does the authentication on behalf of the client.
    If you need an official Statement, i would recommend you open a Support Message with the SAP Support.
    Otherwise you could monitor the network traffic during the Authentication of the Client. There you should see if the Client communicates directly with the LDAP Host or only with the CMS.
    Regards
    -Seb.

Maybe you are looking for

  • Problem with srss4.2 installation on solaris 10 10/09

    Hello, i have a solaris 10 10/09 os. After the installation ( ./utinstall) i get the error message: ## Installiere Teil 1 von 1. /usr/dt/appconfig/types/C/SUNWut.dt /usr/dt/config/Xsession.d/0010.SUNWut.xdmEnv <symbolischer Verweis> /usr/dt/config/Xs

  • I just updated to iOS 8 on my iPad 2 and got an error then factory reset! Now I cannot see my Purchased Apps

    I just updated to iOS 8 on my iPad 2 and due to a unforeseen error on iTunes I had to do factory reset. I was using my friend's iMac iTunes to download and update, instead of OTA. Now I'm unable to see my previously purchased apps (some even disconti

  • Gmail Buttons Not Working In Safari 6.0.5

    The Archive, Spam, Delete and Mark As Read buttons don't work in Safari 6.0.5 any more (OSX 10.8.4). I've enabled the Developer Menu, cleared the cache, no better. Anyone got any ideas? Having to use the Gmail app on my iPhone at the mo!

  • Oracle Objects and Domains in Java Server Pages

    We have defined this object in a Oracle 816 Enterprise: CREATE TYPE DESCRIPTOR AS OBJECT ( ID VARCHAR2(30), DESCRIPTOR VARCHAR2(80)) create TYPE descriptor_table AS VARRAY(30) of DESCRIPTOR create table foo_test (foo_test_id varchar2(10), descrip des

  • I have two iCloud accts each to manage different data

    Hello, The reasoning is now in my alt iCloud account I can have my Contacts, Calendars, and Reminders without my wife and kids stuff merging with mine. Anyway - it seems to be working fine but am wondering if when my phone backs up are both accts bac