Problem winth  install Maintenance certificate

Similar Messages

• How to install maintenance certificate and License with solution Manger?

  Hi all,
  Is this possible to install maintenance certificate and License with solution Manger atomatically ?
  Regards,
  Neni

  Hi Swaroop,
  There is a feature in SAP Solution manager through which we can instal the licenses.
  Please see below links,
  http://help.sap.com/saphelp_sm70ehp1_sp23/helpdata/en/41/42b6397c604278b6626f3d570c98c8/content.htm
  http://help.sap.com/saphelp_sm70ehp1_sp23/helpdata/en/89/a7c08d740c4cffb491f98801f17d30/content.htm
  Thanks,
  Jagadish.

• Having problem getting installed root certificate to work

  We have a recerse proxy set up with an SSL certificate singed by our local CA.  We are trying to connect to this reverse proxy from iPad over 3G connection.
  Initially, we received the error "Safari cannot open the page because it could not establish a secure connection to the server".  Reading up on this, realized that we needed to install the CA root certificate as a trusted root on the device.
  Got iPhone Configuration utility, set up a configuration profile for the sole purpose of installing the certificate, added the certificate through Credentials section, and assigned the profile to the device.  I can see the certificate updated to the device through General>Profiles and can confirm that it IS the root certificate used to general the SSL certificate on the proxy.
  Even after application to the iPad (tried on iPhone also), attempt to access our proxy server from the iOS device fails with the same error.
  It is interesting to note, that on a personally owned iPad, instead of the error noted, I received a pop-up indicating the certificate was unknown, and I was presented with options to "Cancel, Details, Continue".  Clicking on "Details", I was allowed to view the certificate properties, and ALSO had a button to "Accept".  Hitting "Accept" installed the certificate as trusted, and I get through the proxy server just fine.  Only problem now is that if I *want* to re-create the prompt, I have no way, as I've found no way to remove certificates from the iPad unless installed via configuration profile.
  We've checked and double-checked, and the certificates all "line up" to the correct CA.
  Any ideas where I night be going wrong?
  Thanks!

  New clue....
  I only have the problem of not connecting to the proxy server if I'm using a 3G connection.  If I turn on wi-fi, connect to an access point, the installed root certificates do their job, and I connect just fine.
  Anyone know of potential problems with SSL certificates over 3G?

• Cannot open install assistant.  I get this error message: The application cannot be installed due to a certificate problem.  The certificate does not match the installed application certificate, does not support application upgrades, or is invalid.  Pleas

  How can I downloade a trial of Adobe Elements 12? 
  I followed the instructions to download assistant...but get this message: The application cannot be installed due to a certificate problem.  The certificate does not match the installed application certificate, does not support application upgrades, or is invalid.  Please contact the application author.

  Hi alposer,
  Please remove the copy of the Adobe Download Assistant you currently have installed and then reinstall the Adobe Download Assistant.
  Regards,
  Rave

• Problem in installing certificate

  I tired to install trial certificate from verisign.
  I followed the instruction as in the admin guide
  First installed the certificate in server cert tab under manage certificate
  then installed in CA cert tab to make the certificate trust. It went well through the wizard but the cert name didnot appear in list of trusted CA cert.
  so to enable ssl i checked enable ssl under the encryption tab.
  and restarted the Directory server ...
  after asking for password (pin)
  it gave me the error failed to start the server not able to start ns-slapd
  error log shows
  [22/Apr/2004:14:52:08 -0500] - Sun-ONE-Directory/5.2 B2003.143.0020 (64-bit) starting up
  [22/Apr/2004:14:52:08 -0500] - WARNING<4753> - SSL - conn=-1 op=-1 msgId=-1 - Security Initialization: Can't find certificate (server-cert-trial) for family cn=RSA,cn=encryption,cn=config (error -5978 - Network file descriptor is not connected.)
  [22/Apr/2004:14:52:08 -0500] - WARNING<4754> - SSL - conn=-1 op=-1 msgId=-1 - Security Initialization: Unable to retrieve private key for cert server-cert-trial of family cn=RSA,cn=encryption,cn=config (error -5978 - Network file descriptor is not connected.)
  [22/Apr/2004:14:52:08 -0500] - ERROR<4756> - SSL - conn=-1 op=-1 msgId=-1 - None of the cipher are valid.
  [22/Apr/2004:14:52:08 -0500] - DEBUG - conn=-1 op=-1 msgId=-1 - SSL socket import or configuration failed.
  [22/Apr/2004:14:52:08 -0500] - DEBUG - conn=-1 op=-1 msgId=-1 - Failed to init daemon
  could any one shed some ligt here.
  Thank you

  Hi.
  Try posting this question in the security newsgroup.
  Thanks,
  Michael
  Ankur wrote:
  I am doing the setup for secure socket layer(SSL) in weblogic server
  I
  have created the certificate which need for ssl by using the Openssl ,
  after
  that I entered path for all the file relate to setup by using the
  weblogic
  console. Once I have complete all this entries, I restarted the server ,
  at
  the time of restart its giving the following error. I am also sending
  the
  screen short of console and the log files as an attachment.
  <Feb 4, 2002 4:45:46 PM GMT-05:00> <Alert> <WebLogicServer> <Security
  configuration problem with certificat
  e file config/cauvery-key.pem, java.io.EOFException>
  java.io.EOFException
  at weblogic.security.Utils.inputByte(Utils.java:133)
  at
  weblogic.security.ASN1.ASN1Header.inputTag(ASN1Header.java:125)
  at weblogic.security.ASN1.ASN1Header.input(ASN1Header.java:119)
  at weblogic.security.RSAPrivateKey.input(RSAPrivateKey.java:119)
  at weblogic.security.RSAPrivateKey.<init>(RSAPrivateKey.java:91)
  at
  weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:397)
  at
  weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:300)
  at
  weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:1039)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:475)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:197)
  at weblogic.Server.main(Server.java:35)
  <Feb 4, 2002 4:45:58 PM GMT-05:00> <Notice> <Management> <Starting
  discovery
  of Managed Server... This feat
  Please help us to solve this problem--
  Michael Young
  Developer Relations Engineer
  BEA Support

• Problem installing SSL certificate for CPS

  I work at a medium-sized University, and we have used
  Contribute 3 with CPS1.11 for well over a year. Recently, however,
  the Contribute clients began having difficulty logging in to CPS.
  At first this was intermittent, but is now constant. Adobe support
  suggested replacing the CPS self-signed SSL certificate with a
  genuine one, because apparently the self-signed certificate is
  causing communication delays and timeouts.
  I have the certificate, and am trying to use keytool (see
  http://java.sun.com/j2se/1.4.2/docs/tooldocs/windows/keytool.html)
  to install it, but it is asking me for a keystore password, which I
  don't know. Apparently the standard defaults are "changeit" or
  "passphrase", but neither of these work.
  As a test, I created a fresh install of CPS and attempted to
  list the keys in the keystore, but again was asked for a keystore
  password and the defaults did not work. Adobe support suggested I
  ask here. Anybody have any experience installing a certificate for
  CPS?

  Are you sure that the certificate needs to be installed to all users? Can you provide more details about the certificate and its purposes?
  My weblog: en-us.sysadmins.lv
  PowerShell PKI Module: pspki.codeplex.com
  PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
  Check out new:
  SSL Certificate Verifier
  Check out new:
  PowerShell FCIV tool.

• Maintenance certificate

  Dear All,
  System not generation new Maintenance certificate.
  In SDCCN of satellite system log of Maintenance Package job as below.
  12.07.2009     20:30:42     Maintenance Package completed     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42      > Not due, due every 0 , last successful run 175430 20090702     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42     Get License Data from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42      > Not due, due every 7 day(s), last successful run 203050 20090709     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42     Refresh service definitions from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42      > Not due, due every 1 day(s), last successful run 203042 20090711     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42     Refresh sessions from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42      > Not due, due every 7 day(s), last successful run 203043 20090709     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42     Delete old session and log data :     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42      > Next periodic task 0000000089 has been created to run at 20090713202713     /BDL/SAPLBDL11     0
  12.07.2009     20:30:42     Maintenance Package started     /BDL/SAPLBDL11     0
  Please kindly help to resolve problem.
  Regards,
  Nikunj Thaker.

  Dear David,
  Thanks for reply.
  Manually execute Get License Data in satellite system and log as below.
  14.07.2009     10:51:41     Retrieval of license data completed from destination SM_SMNCLNT100_BACK     /BDL/SAPLBDL11     0
  14.07.2009     10:51:41      > License data retrieved from Solution Manager and installed     /BDL/SAPLBDL11     0
  14.07.2009     10:51:41      > Local system number: 000000000311082908     /BDL/SAPLBDL11     0
  14.07.2009     10:51:41     Fetch license data from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
  14.07.2009     10:51:41     Retrieval of license data started from destination SM_SMNCLNT100_BACK     /BDL/SAPLBDL11     0
  After finishing above manually executed Maintenance Package in satellite syste and log as below.
           14.07.2009     10:52:41     Maintenance Package completed     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41      > Not due, due every 0 , last successful run 105141 20090714     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41     Get License Data from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41      > Not due, due every 7 day(s), last successful run 203050 20090709     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41     Refresh service definitions from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41      > Not due, due every 1 day(s), last successful run 203042 20090713     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41     Refresh sessions from destination SM_SMNCLNT100_BACK :     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41      > Not due, due every 7 day(s), last successful run 203043 20090709     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41     Delete old session and log data :     /BDL/SAPLBDL11     0
           14.07.2009     10:52:41      > Next periodic task 0000000093 has been created to run at 20090715202713     /BDL/SAPLBDL110
           14.07.2009     10:52:41     Maintenance Package started     /BDL/SAPLBDL11     0
  So still there is no difference in log of Maintenance Package after executing Get License Data.
  Still i am not getting new maintenance certificate.
  Regards,
  Nikunj Thaker.

• There is a problem with the security certificate of the proxy server. Error code 18 and 38.

  Hi All,
  After several hours and a short night of sleep I'm out of ideas and hopefully someone here can help me trying to solve this one. First of all the situation:
  Exchange 2013 on a remote location with a CA-certificate.
  Outlook 2010 and 2013 on different locations, locally installed and on RDS.
  When I open Outlook on my laptop all is fine, no errors, good sync, no problem. But when I open Outlook on our Remote Desktop Servers with Outlook 2013 I'm getting errors like "There is a problem with the security certificate of the proxy server. The
  name on the security certificate is invalid or does not match the name of the site. Outlook is unable to connect to this server. (Error code 18)". Opening Outlook 2010 the message is the same, but the error code now is 38.
  After this Outlook opens and is working, there's one more error though. After a while an security warning pops up with the message: "Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the
  site's security certificate. * The security certificate was issued by a company you have not chosen to trust. View the certificate to determine whether you want to trust the certifying authority. * The security certificate is valid. * The name on the security
  certificate is invalid or does not match the name of the site."
  Strangest thing is, it is the certificate of my RDS! It isn't my valid en officially bought certificate from my mailserver. What's going on? I'm out of options, what I've tried so far (in random order):
  - restarting mailserver and AD;
  - restarting switches;
  - restarting routers;
  - restarting RDS, AD and all other servers;
  - bypassed proxyserver for RDS;
  - created a new profile;
  - checked recently installed updates;
  - checked certificate on mailserver;
  - checked RDS on a different location, working fine.
  Nothing helped, what can I do next? Please advice.
  Regards.

  Found a thread that solves half my problem (https://social.technet.microsoft.com/Forums/office/en-US/70d18244-889a-4d95-ac3f-e234672a82b2/there-is-a-problem-with-the-proxy-servers-security-certificate-error-when-starting-outlook?forum=exchangesvrclients).
  The first message can be suppressed by adding this to the Exchange config:
  set-outlookprovider -Identity EXCH -CertprincipalName msstd:webmail.domain.tld
  set-outlookprovider -Identity EXPR -CertprincipalName msstd:webmail.domain.tld
  Giving the command get-outlookprovider, gives me empty information regarding the certprinipalname. Filled
  this and after recreating the profile or deleting the ost-file I still have the second alert with the local certificate of my RDS.
  Not completely where I want to be, any help regarding the second alert is greatly appreciated!

• Problem with Require Client Certificate on on IPlanet 6.0 server

  I installed client certificate. When I connect to the server using browser, I get following error........
  You are not authorized to view this page
  You might not have permission to view this directory or page using the credentials you supplied.
  How can I run the server in Verbose mode and see exactly why this error.
  Default error file does not have any information about this rejection.
  Thanks
  Krishna

  The message is cut and paste of what client (IE) shows on the browser.
  But the Server does not show any thing in it;'s log. I don't see any activity. I have Log Verbose On.
  If I change the client certificate on to off it works fine.
  The problem is only when the client certificate is on.
  The client certificate is created using Iplanet Certificate Server as well the server certificate also generated using Iplanet Certificate Server.
  In this case I am not trying to authenticate user in the client certificate just the client certificate is valid or not.
  Thanks for the reply.
  Regards
  Krishna

• Maintenance Certificate through MOPZ

  Dear All,
  I want to renew my Maintenance Certificate through Service Marketplace and I already have requested Maintenance Certificate
  for SRM 7.0 As (ABAP) and AS(JAVA).
  As I am able to apply maintenance certificate for SRM 7.0 As JAVA,but not able to get the license of SRM 7.0 AS ABAP.
  Is it possible to apply the Maintenance Certificate through MOPZ as I got Solman7.1 SP04 Installed in my System?
  I already have gone through the Links below:
  http://wiki.sdn.sap.com/wiki/display/SMP/LicenseKeyApplication+%28XX-SER-LIKEY%29
  https://websmp209.sap-ag.de/~sapidb/011000358700001857722008E.pdf
  Thanks & Regards
  Ajitabh

  Hi all,
  Thanks for your replies.
  I want to know one thing As I have applied the maintenance certificates for AS ABAP and AS JAVA of SRM 7.0.
  As I got the certificate for JAVA and I have already applied it but still not getting certificate for ABAP.
  I did it manually through SMP.
  As I have checked in SOLMAN_WORKCENTER->>License Management->>As I can see Two columns as Maintenance Certificate and Received Maintenance Certificate.
  While in Maintenance Certificate Column I am getting Yellow LED and in the Received Maintenance Certificate I am getting Green LED for SRM 7.0.I am Confused regarding this Certificate.
  Kindly help me out.
  Thanks & Regards
  Ajitabh

• There is a problem with this connection's security certificate The remote computer cannot be authenticated due to problems with its security certificate. Security certificate problems might indicate an attempt to fool you or intercept any data you send

  Hi,
  I have this Windows 2008 R2 on which I installed remoteapp some years ago.
  Now the certificate expired and I get the message
  "There is a problem with this connection's security certificate
  The remote computer cannot be authenticated due to problems with its security certificate.
  Security certificate problems might indicate an attempt to fool you or intercept any data you send to the remote computer."
  How should I renew the certificate? I already went to certification store and tried to renew certificate with same key but then it says "the request contains nor certificate template information".
  Please advise.
  J.
  J.
  Jan Hoedt

  Does the computer account have Enroll permission to the certificate template?
  From the Server running your CA, run mmc, click File then Add/Remove Snap-in...
  Add Certificate Templates and click OK.
  Find the certificate template, then right click and select properties.  On my CA its call ed RemoteDesktopComputers but might be called something different depending on what what template your certificate is based on.
  On the security tab, click Oblect types, check Computers then OK. Enter the Computername and click OK.  Then give your computer account Enroll permisssion.
  HTH,
  JB

• Unable to install SSL Certificate - ADMIN4118: Only one server certificate can be installed at a time

  Hi,
  We are trying to install SSL certificate (Verisign Class 3) on iPlanet Web Server (version 7). However, at the final step we are getting the error "ADMIN4118: Only one server certificate can be installed at a time"
  We are following the below steps,
  Under "Server Certificates" tab,
       -> Click on "Install" button.
       -> On "Select Configuration" click on "Next" button.
       -> On "Select Tokens and Passwords", select default token as "internal" and click on "Next" button.
       -> On "Enter Certificate Data", select option as "Certficate File" and give path to the certificate file which is having .p7b extension
       -> On "Certificate Details" we are getting warning as "Duplicate Server Details Found" and it's by default using the existing certificate's nickname.
       -> On "Review" page after clicking "Finish" button, an error is displayed saying "ADMIN4118: Only one certificate server can be installed at a time"
  There are multiple sub-domains availble and the new certificate we want to install contains one more sub-domain.
  So, say currently the subdomains present are,
  1.abc.com
  2.abc.com
  so on...
  and now we are trying to install a SSL certificate having one more subdomain say 10.abc.com.
  Please let us know if you have solution to this problem.
  Thanks,
  Rajesh

  Hi Rajesh,
  That error is most commonly seen when you are trying to install a certificate chain into the Web Server.
  The chain should be installed using the "Certificate Authorities" tab per the following steps:
  1) Login to the Admin Console.
  2) Click Edit Configuration from Common Tasks > Configuration Tasks.
  3) Click the Certificates > Certificate Authorities tab from the Configurations page.
  4) Click the Install... tab from the Certificate Authorities (CAs) page.
  An Install CA Certificate Wizard opens. The wizard guides you through the settings available for installing a Certificate Chain. Select Certificate Chain when prompted for Certificate Type.
  You should then see the CA and intermediate certificate(s) listed in the security database.
  If you have access to MOS, more details can be found in the MOS KM Note:
     Oracle iPlanet Web Server - 'ADMIN4118: Only one server certificate can be installed at a time' When Installing Certificate Chain (Doc ID 1925025.1)
  regards
  Tracey

• Cisco Network Setup Assistant Unable to install the certificate on Android KitKat

  Greetings,
  I'm having issues with deploying the CA. Although the Cisco app fails, the user cert (but no CA) appears to install and is accessible during wifi setup. I am running the latest version of Cisco Network Setup Assistant 1.2.42. The phone is running Android KitKat 4.4.4, not rooted, running stock T-Mobile rom. I'm able to authenticate with the guest side, and get as far as Installing Certificates... Reference the screen shots attached. 
  Error message cisco Network Setup Assistant: "Unable to install the certificate. Exit the application and run it again to continue to the installation."
  I have ran the application several times, it keeps returning to this same message.
  After failure of the Cisco app, I noticed there is a certificate manager with CA cert and key, and than subsequently one new key continues to loop after until I cancel (also in screenshots).
  I have tried decryption, removing all security, and clearing credentials, yet the problem persists. Any help is appreciated. 

  Greetings,
  I'm having issues with deploying the CA. Although the Cisco app fails, the user cert (but no CA) appears to install and is accessible during wifi setup. I am running the latest version of Cisco Network Setup Assistant 1.2.42. The phone is running Android KitKat 4.4.4, not rooted, running stock T-Mobile rom. I'm able to authenticate with the guest side, and get as far as Installing Certificates... Reference the screen shots attached. 
  Error message cisco Network Setup Assistant: "Unable to install the certificate. Exit the application and run it again to continue to the installation."
  I have ran the application several times, it keeps returning to this same message.
  After failure of the Cisco app, I noticed there is a certificate manager with CA cert and key, and than subsequently one new key continues to loop after until I cancel (also in screenshots).
  I have tried decryption, removing all security, and clearing credentials, yet the problem persists. Any help is appreciated. 

• Install a certificate in microsoft store

  Hi, I have some problems and i hope you will help me to solve these problems.
  I would like to install CA trusted certificates in the microsoft certificate store.
  I already know how to generate certificates requests, how to submit these requests to the CA and how to retrieve the issued certificates.
  I found several examples on internet, which show how to store the issued certificates in a java keystore.
  I also found how to export a certificate from a java keystore to a certificate file.
  My problem is that the file generated doesn't containt the private key and cannot be installed to the user personnal certificate store.
  So, my question is, how can we associate the private key generated during the request with this issued certificate?
  And how to install this certificate to a microsoft certificate store?
  I didn't get how or if keytool can do this work for me, and I searched for examples but I didn't find anything which can help me.
  I'm sure this is not a new problem, so I hope you'll be able to help me.

  I finally found by myself a way to solve my problem.
  In fact, I wasn't able to install the retrieved certificate in the user personnal certificate store because I didn't associate the private key generated during request with the issued certificate.
  I apologize for my posts and I hope I didn't disturb anyone.
  Maybe some developpers may need a way to solve such problems, so I will explain what I choose to do, even if it may seem quite simple.
  Actually, when I retrieve the certificate chain from the CA, I store it in a pkcs12 keystore.
  I also put in this keystore the private key object corresponding to the PrivateKey which was generated during the certificate request.
  KeyStore ks12;
  ks12 = KeyStore.getInstance("pkcs12");
  ks12.load(null, null);
  // Import/insert the exported key entry into PKCS#12 key store.
  ks12.setKeyEntry("", privateKey, password.toCharArray(), certtab); //certtab is the certificate chain
  // Save key store on disk.
  FileOutputStream fos = new FileOutputStream("your certificate.pfx");
  ks12.store(fos, passsword.toCharArray());
  fos.close();And then, all that is needed to do is to execute the pkcs12 file (the standard windows wizard will appear, so the user will be able to install the certificate in his personnal certificate store).
  Bye.
  Edited by: aurelien707 on Jul 8, 2008 2:17 PM

• Installing secure certificates (from I.E.) for Mai...

  I got a new N73 a week ago and have since then tried to install the secure certificate issued by my MS Outlook server (outlook web access) to access exchange so that I can work Nokia's Mail for Exchange.
  Now - this certificate is valid since on my previous phone (not symbian based - it installed and worked fine.)
  I have followed several resources online and none work. I have exported .cer files and .der files.
  To get the certificate files to the phone is not the issue. It's once they reach the phone that the problem starts. Only base-64 encoded x509.cer files show as "readable" files on the handset. Problem though that these files only open with a notepad reader. I want to install the certificate, not read the thing.
  Am I just being stupid here or what but I have called several of the Nokia support centers (South Africa and United Kingdom) and they don't know how to install such on an N73 either... ???
  Is there any hope out there ?

  The icon should show up as a light blue background (round circle) with a questionmark.
  ==DONE
  As if it's something wrong with the file.
  == Phone says "unable to open file"
  You should export the DER encoded binary file.
  == Done
  What your doing wrong is that you first have to click on the certification path and then chose the next certificate on the tree (in my case starfield secure certification authority), not the root, then press view certificate then go to details and export.
  == File Exported - from PC onto PC desktop.
  You cannot immediatlely go to details after you've opened up the certificate window and press copy to file.
  == It is here where I get stuck...
  I can export the file but HOW do I get it to INSTALL on the phone. I copied the file (all steps above) to the phone (from PC), once I try to open it, it says - "Unable to open file"...
  If I use the phone's browser to go to the web page where the certificate lies, the phone asks me if I want to continue since the certificate is invalid, I can view the details but can not save it here...
  Please help
  Regards
  Raptor
  Message Edited by raptor25 on 04-Sep-200705:51 PMMessage Edited by netcash on 10-Sep-200708:18 AM