Site With Comments Requiring Sign In

Similar Messages

• Issues with Commenting and Signing

  I'm using the latest update of version 10. When I have a document that has comments and I use the sign tool and then it saves the document the comments disapear. I've tried just about everything I can think of but it seems like after you use the sign feature it wipes all the comments and sticky notes out. Any ideas or fixes for this?
  Thank you in advance!

  This can be done using the Sign pane without having to print the PDF/scanning pages after adding comments/signatures.
  You can add text comments using the 'Add text' tool from Sign pane, add your signature using the 'Place signature' option where you can choose from 3 different signing options (typewritten signature, hand-drawn signature or importing signature from an image which can be a scanned image of your signature). After one person has added his comments and signature, you can choose to "finalize" the PDF which flattens the PDF so that the comments/signature of this person cannnot be modified by others. The next person can now add his comments/signatures on this PDF again. After all people are done with signing, you can attach the final PDF to your accounting program. This should work seamlessly.
  Hope that helps!

• Mobile-friendly site with comments?

  Hey, I need some help.
  I'm making a site for a project that requires asking questions to as many people as possible, sort of like a survey. So it needs to have some sort of comment box. A lot of people are going to get to the site through QR codes, so it definitely needs to have a mobile version. Unfortunately, I can't seem to find a site builder that fits both of these requirements. The closest I got was Wix, which was looking promising until I realized that it was a Flash platform and its mobile sites didn't include a comment feature. In other words, not very close at all.
  If anyone has any advice to give, it would be a HUGE help!

  Mobile websites need to use a responsive design whose width varies to suit the width of the various devices. Unfortunately, iWeb can't do this.
  Contact forms for mobile users are pretty much the same as for standard websites. The form width needs to be less than about 300px for smart phonesl.
  Here's some example designs where you can see how the forms work. The submit button needs to be large enough for a finger tip.
  http://www.ezmacwebdesign.com/showcase.html
  This one, for example, has a standard style contact form...
  http://www.ezmacwebdesign.com/html-mobile/index.html

• No windows 7 or 8 on my Dell PC just windows vista.  How do I download the free U2 cd with no icloud icon?  Site says it requires windows 7 or 8??

  No windows 7 or 8 on my Dell PC just windows vista.  How do I download the free U2 cd without having windows 7 or 8?  Site says icloud requires windows 7 or 8??? 

  iCloud is a different set of features from iTunes in the Cloud.
  To download your copy of the album go to iTunes Store > Quick Links > Purchased > Music > Not in my library. You should find the album there. Click the cloud symbol to download.
  tt2

• Unchecked Require sign option asking for credentials

  Hi,
  I have created a site in SharePoint Online(Office 365). Uploaded one document with external user with "Require Sign in" check box unchecked (for ex: [email protected]).
  When i click on document link, it redirects me to default login page of office 365.
  Please tell me why this is happening. and how could i resolve this issue?
  Its working as expected in chrome but not in firefox & IE.

  Hi Cris,
  Please try to clean up the cached credential in your computer. Then fill in with the format of UPN when it prompted for credentials next time and check the Remember my credential to save it. About how to remove cached credentials, please follow these steps:
  1. Launch the Credential Manager from Control Panel > All Control Panel Items > Credential Manager.
  2. In the Generic Credentials section you’ll see a setting for [MS Outlook] which will include your SSO details. Click the downward-pointing arrow to the right of that value.
  3. In the expand details, click Remove from vault. Then Outlook will no longer have a stored copy of your password.
  Regards,
  Winnie Liang
  TechNet Community Support

• Can't access some web sites with version 4.0

  I recently installed version 4.0 and am in test phase of the server.
  With or without ACL's turned on, I can't access the following web site
  https://www.sunnet.sunlife.com/member/signin/index.asp?
  or
  https://www.sunnet.sunlife.com/member/
  In Internet Explorer, it sits on a blank page with the little world logo spinning around until it finally times out after a few minutes. I've tried accessing these sites with both IE6 and IE 5.5 and get the same problem.
  As a footnote, the web access to these sites works fine with our current Web Proxy version 3.6.
  Does anyone have any ideas why this isn't working through the new Proxy 4.0?
  Thanks

  I did some additional testing through Proxy 4. All web sites and web pages including secure sites that I tried accessing over the past couple of days all appear to work fine with the exception of the forementioned sites. Access to these specific web pages (which I cannot currently access) are part of our day-to-day business requirements, and therefore will prevent me from using Proxy version 4.0 as our production proxy unless I can figure out why these web pages won't load, and how to fix the problem.
  As an experiment, I tried to access these web pages through Proxy 4 with Mozilla FireFox and Netscape 7. None of these web browsers (including Internet Explorer) will bring up these web pages when going through Proxy 4. But bypassing the proxy or going through our v3.6 proxy works fine for these web pages everytime, and with all browsers. This leads me to believe that this web page access problem is not a browser specific problem, but something in Proxy 4 isn't processing the request to display the page properly.
  As a reference, the web site in question is http://www.sunlife.ca. On the left hand side of the page go to "Sign In" then "Plan Members". Thats where the request hangs through Proxy 4 no matter which browser I use, including Netscape... but works perfectly fine with Proxy v3.6.
  Can someone who is running a version 4 Proxy also please try to access the SunLife Members login page and see if it works or fails for you?
  Thanks

• Public SharePoint Online Site with External User Portal

  Hello Everyone,<o:p></o:p>
  My company switched over to Office 365 a few months ago, and now would like to start using our Public SharePoint site to share information (documents
  pertaining to their orders/drawings/etc.) with our customers (external users).<o:p></o:p>
  <o:p> </o:p>
  I have seen documentation on how to share documents with individual users, but we were looking to do something a little bit different. We would ultimately
  like to have a public site with generic company information (like hours, about us,directions etc.) that anyone can see.
  We would also like to use SharePoint as almost an "FTP type" service where we could post documents and share them with individual
  external
  users. HOWEVER, instead of sharing individual documents, we were wondering if there was a way that an external user (that we have granted
  access) could sign into the public SharePoint site, and then see information that ONLY pertains to them.
  I have been doing some research on this, and I haven't seen that anyone else has tried this. Has anyone had any luck? Or would you have suggestions on how to make
  this work? I had originally posted this question on the Office 365 SharePoint forum, and they suggested posting this question here. Any help would be appreciated. Thanks!

  Hi,
  did you finally manage to get what you requested here above ? Indeed, I am also struggling to set up the same (public website with individual content sharing with external authentified user).
  For external user, I am quite sure that we need to go through MS ID creation (I have created some test users using https://login.live.com).
  Our public website is done and (almost) working. I have then created a sub-site for the same, this one to manage permission based on authentified user
  But I am stuck when trying to assign a document library with relavant permission.
  Would be great to share our feedback and I have searched a lto on the web and did not find any satisfying answer to this design (If there is any... here is my doubt...)
  Thanks in advance
  stef

• Problems with comments-enabled PDF: I can't see my client's comments

  Hello,
  I really hope somebody can help me.
  THE SITUATION: I have a comments-enabled PDF. The comments repository is located on my externally hosted webdav server. Both my client and I have local copies of the PDF, and up until today, my client was able to post comments on the PDF.
  THE PROBLEM:
  - Today, my client suddenly noticed that the review had "expired" and she can't post her comments.
  - I am able to see and post my own comments in the PDF, but I can't see my client's comments in the PDF.
  - My client can see her own comments. (I don't know if she can see mine.)
  - If I log into my webdav site with FTP, I can see my client's XML file which contains all her comments. I can also see my own XML file which contains my comments, and it is indeed updating each time I add a new comment.
  I thought it would be possible to import the XML file containing all her comments into the PDF. However XML is not a format that Acrobat allows you to import!!! It only will accept FDF, XFDF, or PDF!
  Phone tech support was spectacularly unhelpful. I seriously doubt "Nelson" from Bombay has ever used Acrobat in his life. He asked me to send the file to him, which I did, but I haven't heard back.
  So my question is:
  1) How can I get my Acrobat file to view the comments which are sitting on the comments server in an xml file? Why would it see mine but ignore hers?
  2) If I can't get the comments to show up, then can I at least import my client's comments, which are currently sitting in an XML file, into my PDF?
  bonus question: Why is there so little documentation about dealing with webdav comments repositories? Is it considered better to use acrobat.com instead of our own webdav server or something?
  This is Acrobat 9.1.0 Pro for Leopard.

  Thanks for your reply, Steve. Yes, she did say that there was an end date, but when I go there, I don't see one. Baffling.
  I have decided to go over to her office, create an archive of her PDF, then try to pull those comments into a new PDF.
  This is a GIANT PAIN. And egg in my face, after I've sold this client on the ease and convenience of a PDF workflow!
  So is there any way to get xml comments back into a PDF???

• Multiple Digital Signatures - each signer enters their comments then signs

  Background / Problem:  I currently have a Microsoft Word Document I print out (multiple pages). Everyone reads the first page, puts their comments in their section, then signs under their comments. The same group of papers (2-3 pages) gets signed by 7 people. After I chase everyone down to add their comments and sign the paper, I then file it into a massive file cabinet.
  I am considering buying Adobe Acrobat very shortly (if this can solve the problem). I would like to convert the two or three page document I normally print out into a PDF file. I would like for someone to add a comment in their comment box, sign the document and save it. The next person will then add their comment sign it and save it. How do I do this and what version of Acrobat do I need (if acrobat can do this)?

  Yes, you can do that in Acrobat. Keep in mind that each user will sign the complete document (all pages with his/her comments on the first, second, whatever page). but the document will contain all signatures. You can design the document so that the signatures will appear on the pages where you want them to be. It is just that each signature will cover the complete document content which is what you want.
  You can save the original PDF as Reader-Extended which will allow your user to sign in in Reader. You do not need to buy a separate copy of Acrobat for all of them.

• A Problem with Comments on iWeb

  I am having a problem with the comments feature in iWeb. Something has happened where people can no longer add comments to my blog or other sites. Every time they try they see this, "We're sorry. We are having problems processing your request." Does anyone have any insight on how to solve the problem? Thanks,
  Kyle

  You join many others in discovering a problem with the mobile.me conversion. You are probably doing nothing wrong. The "publish" button at the bottom of the iweb application is not working correctly. It is publishing to web.mac.com even though it says otherwise. When this happens the comments function in the blogs will no longer work. Solution: Do not use the "publish" button at the bottom of the iweb application. Instead, go to the very top of your screen, select "File", then publish to mobile.me or Publish all to mobile. me. I think you will find that the comments function now works.
  This solution will NOT work for many of us who have lots of users that have previously been given a web.mac.com URL. There are only two options: 1. Give your users the new URL; or, put a note at the top of the web.mac.com blog that tells people it is "read only" and that comments won't work, then use a link to redirect them to a mirror image of the site with a web.me URL.. It's a pain, I know. Apple needs to fix it but the company seems to be taking a long time to do it. Must be bigger problems on their plate.
  Bob

• Encoding issue with " " Less than sign

  Hello Experts,
     I am working on Receiver Webservice scenario where I am facing issue with "<" less than sign. SAP XI system automatically replace it with "&#60;" sign. I can see the changed value in Audit log of communication channel.
  Web service is not able to accept the data and I can see error message in audit log
  SOAP: response message contains an error XIAdapter/PARSING/ADAPTER.SOAPEXCEPTION - soap fault: Server was unable to read request. ---> There is an error in XML document (1, 573). ---> The specified node cannot be inserted as the valid child of this node, because the specified node is the wrong type._
  When I check the payload in audit log I can see the XML structure properly but as I open it in Notepad I can see character code "&#60;" instead of  u201Cless than <u201D symbol.
  Audit log XML file is as given below
  <?xml version="1.0" encoding="utf-8" ?>
  - <ns1:TurnaroundDetail xmlns:ns1="http://isotrak.com/webservices">
    <ns1:sessionid>3f2f2592-39d5-456e-8cf2-5d7ee81402c8</ns1:sessionid>
    <ns1:data><Request xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><TurnaroundDetail><PlannedJobDepartureDatesFrom="2011-03-01T12:01:23.00" To="2011-03-01T12:07:10.00"/><DepotReference DepotReference="EASTLEIGH"/><DepotReference DepotReference="CHANDLERS"/></TurnaroundDetail></Request></ns1:data>
    </ns1:TurnaroundDetail>
  When I open it in notepad I can see converted value
  <?xml version='1.0' encoding='utf-8'?>
  <TurnaroundDetail xmlns='http://isotrak.com/webservices'><sessionid>dcc4adcd-ce8f-403d-a1cf-01fcc5aab066</sessionid><data>&#60;Request xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">&#60;TurnaroundDetail>&#60;PlannedJobDepartureDatesFrom="2011-03-02T08:28:29.00" To="2011-03-02T08:38:09.00"/>&#60;DepotReference DepotReference="EASTLEIGH"/>&#60;DepotReference DepotReference="CHANDLERS"/>&#60;/TurnaroundDetail>&#60;/Request></data></TurnaroundDetail>
  I hope this is not caused due to AnonymizerBean configured in receiver SOAP comm channel.
  anonymizer.acceptNamespaces   http://isotrak.com/webservices ''
  anonymizer.encoding  ISO-8859-1 (also tried utf-8)
  anonymizer.quote  ''
  Could you please suggest if I can get rid of "&#60;" character and get < less than sign? Or it is obvious behaviour by SAP XI system w.r.t Encoding and Receiver end needs to decode this character?
  Note: As per Web service requirement whole XML data to be processed by webservice is populated in single Data field. As here we are populating whole XML data file in one field named data
  Thanks in advance.
  Vinit.

  Simply typing "Test <test> test" into a frame and exporting that yields
  <ParaStyle:Body>Test \<test\> test
  and reading it back into ID gives the expected result.

• Update web site with changes

  I just made changes to our menu (created in fireworks) How do
  I update my web site with the new menu? (please do not flame me for
  stupidity :-) )

  Your .png has the same buttons at the Web site, what is it
  you changed?
  I looked at the code and...I'm sorry to tell you this, but
  it's a mess. From line 7 through line 787, comment tags are opened
  but not closed. 780 lines of improperly coded nothing? Some
  standard Dreamweaver code is commented out from 788 to 847, and
  again at 1747 after a few more hundred lines of open-but-not-closed
  comment tags and blank lines, and again at 3579.... After each
  block of commented out code is some kind of menu stuff, but
  probably only the last block is functional. Looks like there's some
  external JavaScript code for your menus from 2002.
  For divs, ids should be defined only once, but id LAYER2 is
  defined twice (lines 3787 and 4021), id LAYER4 is defined 3 times
  (lines 3803, 4032, and 4035), and id LAYER6 is defined twice (lines
  4019 and 4030).
  Have you tried viewing the site in Firefox? In 2.0, I get the
  buttons and the footer and that's it. No header, no Flash elements,
  and no background behind the buttons. Hmm. I wonder if it's because
  the flash is in an embed tag rather than an object tag? I don't use
  Flash, so someone else will have to help you with that. In IE7,
  even though I know there are some other menu links somewhere
  (Admissions, Curriculum, Student Activities, Faculty and Staff,
  Counseling, Cafeteria, Safety Pledge, Directions) I can't get them
  to display. Perhaps that 5-year-old JavaScript code is not
  compatible with current browsers.
  If I were you, I'd take this step-by-step, dissect what this
  page is
  supposed to do, and rebuild it from scratch in a way that
  will work with current browsers. This one doesn't. I know that
  sounds like a lot of work, but I think it would be
  more work to straighten out
  this page.
  Good luck!

• Unable to connect to internal SSL sites with unknown CA's after 36.0 update.

  Last week my browser auto-updated to version 36.0 and I am now no longer able to connect to certain internal corporate websites. These sites either have self-signed certs, or certs signed by an internal CA. They do not use certs signed by publicly known "trusted" CA's.
  For example, one of the errors that I receive is below:
  Secure Connection Failed
  An error occurred during a connection to [HOST]:[PORT]. SSL peer rejected a handshake message for unacceptable content. (Error code: ssl_error_illegal_parameter_alert)
  Although a warning message is received in IE or Chrome we are given the option to proceed and the site opens correctly, despite those browsers also indicating that the servers cert is not trusted.
  I have added the internal CA's cert to the Authorities tab in the Firefox Certificate Manager, but am still not able to connect to the internal site.
  Firefox allows me to accept some incorrect certs (or at least it did in the past), why is this not the default behavior with *all* certificate related problems? I realize that there are malicious sites out there, but there are also internal ones that are being blocked as well. Is there a config option that can be set so a user is prompted for all cert errors and they can decide to proceed if desired instead of just being blocked from the site? I understand blocking by default, but there also needs to be a way to proceed for advanced users.
  Are there any configuration options to loosen the cert standards for sites? All other sites seem to load properly and otherwise there are no problems with the browser.
  Sorry if this is the wrong place to post, I wasn't sure where to.
  Thanks for any assistance!
  -Beaty

  First, sorry for the delay in responding, things have been crazy here lately.
  Secondly, here is the output from openSSL for connecting to the server:
  OpenSSL> s_client -connect qrsa01.qnao.net:443
  Loading 'screen' into random state - done
  CONNECTED(00000180)
  depth=1 CN = RSA root CA for qrsa01.qnao.net, serialNumber = 15702a01a563d5b8f2b
  a65250ad81947eef537554eae2320efed2159a8193bd5
  verify error:num=19:self signed certificate in certificate chain
  Certificate chain
  0 s:/CN=qrsa01.qnao.net/serialNumber=3b444eeb8355fb2b5b686d03ce1c0a61cd3552a184
  001b9564700f7cebcbe9f0
  i:/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba65250a
  d81947eef537554eae2320efed2159a8193bd5
  1 s:/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba65250a
  d81947eef537554eae2320efed2159a8193bd5
  i:/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba65250a
  d81947eef537554eae2320efed2159a8193bd5
  Server certificate
  -----BEGIN CERTIFICATE-----
  MIIDdDCCAlygAwIBAgIQYNRTnyH83tfcpTKMxP2kbTANBgkqhkiG9w0BAQUFADB1
  MSgwJgYDVQQDDB9SU0Egcm9vdCBDQSBmb3IgcXJzYTAxLnFuYW8ubmV0MUkwRwYD
  VQQFE0AxNTcwMmEwMWE1NjNkNWI4ZjJiYTY1MjUwYWQ4MTk0N2VlZjUzNzU1NGVh
  ZTIzMjBlZmVkMjE1OWE4MTkzYmQ1MB4XDTEzMTExMTIxMTcwMloXDTMzMTExMjIx
  MTcwMlowZTEYMBYGA1UEAwwPcXJzYTAxLnFuYW8ubmV0MUkwRwYDVQQFE0AzYjQ0
  NGVlYjgzNTVmYjJiNWI2ODZkMDNjZTFjMGE2MWNkMzU1MmExODQwMDFiOTU2NDcw
  MGY3Y2ViY2JlOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgkK
  Lx1fAgNJsejbev9HP/j6I1quZH3oH4mQ5sy/Hx/F2yWXnf0vUFjclP8swte3OFA+
  +okNqESCUDTZYHA4b3GCJDbzLKTWXOZ9GuZ8f2xAGbTYNEVdzTD2io0HBVwvd0O/
  XGYn1vF1J+PghKJq40fQgdvVSJ2ZKeFc8U1yBRrEbL7/9XG7cgQxMkyzwdaWUg8k
  9aGWn7ajSduJqYAb0NFbycZyY9JqKLRaI+L4bUyZZSUiDNV08dzPca7zDlA/G26K
  mVfxdnQDp5sX6x7LMUDfo25gJVHOB7bp25/XCSASWBKG0BQx+Snl/mPmiY+00B6l
  PTjyV4h3j2e4o255rQIDAQABoxAwDjAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEB
  BQUAA4IBAQCdUBdHPPmMzArZ8w5+FLoOo6VFA1gNDtOa+YDpt1H5K/ki0lO49W2v
  vKDPC6J60gTnvwtNe7zT2l6QIEf/k1Ene+ZvWFmOW1Eco2cWnXaxEmbb3L1uxvid
  6vMCWscKvbo0LRLrskAWhzionoziGazkt8XqM7prmlroH7n9keLyIFRFhbzSYKhp
  q3Zd2Ys/7AFzwIGymTe8MncU1bYw5vYl5hvy8KR8t+qqz/DNBXDCQ2FPpEK9SWrT
  7LF7iPrrCi0Zd8gSFkcCWWojCcOpk+FKU3Lo3geURvNypNZMihenuWPoTSn+PCE/
  vJZCWnp7n2DDeDOBmNvaV2K2R5w81+xN
  -----END CERTIFICATE-----
  subject=/CN=qrsa01.qnao.net/serialNumber=3b444eeb8355fb2b5b686d03ce1c0a61cd3552a
  184001b9564700f7cebcbe9f0
  issuer=/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba6525
  0ad81947eef537554eae2320efed2159a8193bd5
  No client certificate CA names sent
  SSL handshake has read 1948 bytes and written 675 bytes
  New, TLSv1/SSLv3, Cipher is RC4-SHA
  Server public key is 2048 bit
  Secure Renegotiation IS supported
  Compression: NONE
  Expansion: NONE
  No ALPN negotiated
  SSL-Session:
  Protocol : TLSv1.2
  Cipher : RC4-SHA
  Session-ID: 550194FCFA9BE4A1060430A13EBA67B9EBD793485253412053534C4A20202020
  Session-ID-ctx:
  Master-Key: F1FD3AB4846FBC14D35EB7BBAFF8704821940DDE5A0549519A0AFF2EC8CAF245
  08DCAA6D4F9FB1D125664FC7BFE87E95
  Key-Arg : None
  PSK identity: None
  PSK identity hint: None
  SRP username: None
  Start Time: 1426167036
  Timeout : 300 (sec)
  Verify return code: 19 (self signed certificate in certificate chain)
  read:errno=0
  OpenSSL>
  I had already set the tls.security.version.min to 0, so would have expected to be able to connect.
  At this point it seems like the problem is that we are using an internal CA to sign the cert for this server, but Firefox won't allow me to proceed despite this. Is there an option that I can set to have firefox prompt on all certificate issues and give me the option to proceed anyways?
  Any other thoughts/suggestions?

• Digital Signature only Release Status with 3(Approver) Signer

  Hello SDN Folks
  I have done all the basic settings for Digital Signature which is sawn in following link
  http://wiki.sdn.sap.com/wiki/display/PLM/Digitalsignaturein+DMS
  it is work  fine with 1 RE (Release) status and 1 Signer
  We have in process to implement Digital Signature with only two Status
  our scenario is
  Document Creator  Create Document With Status CR
  Document Approver Approve Document With Status RE
  now we have scenario that For 1 Document we have 3 Approver and 3 approver must digitally sign on DIR
  our status is
  only   CR(create)---->RE(release)
  so how i can attached 3 digital signer  with only 1 RE(Release) Status
  is it possible to go with 3 digital signer with only 1 RE (Release) Status ????
  Regards
  Tushar Dave

  Hi Tushar,
  Your requirement of utilizing 3 different approvers for a single 'Release' status in a document type/s can be addressed via the approach proposed below:
  1.Define 3 individual authorization groups
  2.Define 3 individual signatures
  3.Define a common signature strategy
  4.Assign the above 3 individual signatures to the common signature strategy
  5.Define the signature sequence(the order in which the 3 approvers must approve)
  6.Define users and restrictions(signature assigned to relevant approvers/users)
  7.For the document type in question for the 'Release' status,assign the above signature strategy and test.
  For more detailed information on using digital signature effectively,refer the below link
  http://help.sap.com/saphelp_470/helpdata/en/9f/857f3a1c7b11d294d200a0c92f024a/frameset.htm
  Regards,
  Pradeepkumar Haragoldavar

• Problem with placing self-signed certificate in trust store on WLS 10.3

  I have had some problems setting up two-way SSL on WLS 10.3.2.
  1. I have not been able to use the java properties listed on
  http://weblogic-wonders.com/weblogic/2010/11/09/enforce-weblogic-to-use-sun-ssl-implementation-rather-than-certicom/
  to use the native Java SSL implementation rather than the certicom. Has anyone else had success using these?
  -Djava.protocol.handler.pkgs=com.sun.net.ssl.internal.www.protocol
  -Dssl.SocketFactory.provider=com.sun.net.ssl.internal.SSLSocketFactoryImpl
  -DUseSunHttpHandler=true
  -Dweblogic.wsee.client.ssl.usejdk=true (for webservice clients)
  2. When I use the ValidateCertChain to validate my keystore with the self-signed certificate I get the message
  CA cert not marked with critical BasicConstraint indicating it is a CA
  Certificate chain is invalid
  which I read was a problem with certificates generated by keytool, yet I find I was not able to circumvent this
  by setting the property weblogic.security.SSL.enforceConstraints to off in the WLS server environment.
  Has anyone else noticed this?
  3. The error I get is
  ####<Feb 15, 2011 1:12:21 PM EST> <Debug> <SecuritySSL> <hostname> <server
  <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1297793541204> <BEA-000000> <Exception during hands
  hake, stack trace follows
  java.lang.NullPointerException
  at com.certicom.security.cert.internal.x509.X509V3CertImpl.checkValidity(Unknown Source)
  at com.certicom.security.cert.internal.x509.X509V3CertImpl.checkValidity(Unknown Source)
  at com.certicom.tls.interfaceimpl.CertificateSupport.findInTrusted_Validity(Unknown Source)
  ####<Feb 15, 2011 1:12:21 PM EST> <Debug> <SecuritySSL> <hostname> <server> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tunin
  g)'> <<WLS Kernel>> <> <> <1297793541207> <BEA-000000> <NEW ALERT with Severity: FATAL, Type: 40
  java.lang.Exception: New alert stack
  at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
  Are there other conditions besides the issue about the missing Basic Constraint field that can raise an
  alert with type 40?
  4. Steps I used to generate jks keystore for inclusion in trust keystore (actual values substituted):
  ** keytool -genkey -alias mykey -keystore mykeystore -validity 35600 \
  -dname "cn=Common Name, ou=Common Name, o=Org, l=location, s=state, c=US" \
  -storepass mypass -keypass mypass
  ** exported a DER format head certificate of mykey into mykey.cer.der
  ** keytool -import -trustcacerts -keystore DemoTrust.jks -alias mykey -file mykey.cer.der
  Any comments appreciated and thanks for this forum.

  Faisal,
  Certicom has an internal restriction that a Date must be notBefore 1970 and notAfter 2105 inclusive.The Java-generated key is valid until Wed Mar 14 11:03:59 EDT 2108. Your knowledge of this area is
  quite impressive, thank you so much for this!