SSL on 3.1 with a Company Provided Cert

Similar Messages

• Need to check tls/ssl but getting stuck with "You must provide a value expression on the right-hand side of the '-' operator."

  I would like to disable ssl 3 but need to test what sites only support ssl 3. I keep getting stuck with an error that is over my head. I've tried manipulating the string a dozen different ways and keep getting the same error. I am not familiar with -notin
  or how to specify which part of the property its checking: thanks a ton
  http://blog.whatsupduck.net/2014/10/checking-ssl-and-tls-versions-with-powershell.html
  line with issues:
  $ProtocolNames = [System.Security.Authentication.SslProtocols] | gm -static -MemberType Property | where-object{$_.Name -notin @("Default","None") | %{$_.Name}
  You must provide a value expression on the right-hand side of the '-' operator.
  At S:\scripts\test23.ps1:50 char:126
  + $ProtocolNames = [System.Security.Authentication.SslProtocols] | gm -static -MemberType Property | where-object{$_.Name - <<<< noti
  n @("Default","None") | %{$_.Name}
  + CategoryInfo : ParserError: (:) [], ParseException
  + FullyQualifiedErrorId : ExpectedValueExpression
  <#
  .DESCRIPTION
  Outputs the SSL protocols that the client is able to successfully use to connect to a server.
  .NOTES
  Copyright 2014 Chris Duck
  http://blog.whatsupduck.net
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
  You may obtain a copy of the License at
  http://www.apache.org/licenses/LICENSE-2.0
  Unless required by applicable law or agreed to in writing, software
  distributed under the License is distributed on an "AS IS" BASIS,
  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  See the License for the specific language governing permissions and
  limitations under the License.
  .PARAMETER ComputerName
  The name of the remote computer to connect to.
  .PARAMETER Port
  The remote port to connect to. The default is 443.
  .EXAMPLE
  Test-SslProtocols -ComputerName "www.google.com"
  ComputerName : www.google.com
  Port : 443
  KeyLength : 2048
  SignatureAlgorithm : rsa-sha1
  Ssl2 : False
  Ssl3 : True
  Tls : True
  Tls11 : True
  Tls12 : True
  #>
  function Test-SslProtocols {
  param(
  [Parameter(Mandatory=$true,ValueFromPipelineByPropertyName=$true,ValueFromPipeline=$true)]
  $ComputerName,
  [Parameter(ValueFromPipelineByPropertyName=$true)]
  [int]$Port = 443
  begin {
  $ProtocolNames = [System.Security.Authentication.SslProtocols] | gm -static -MemberType Property | where-object{$_.Name -notin @("Default","None") | %{$_.Name}
  process {
  $ProtocolStatus = [Ordered]@{}
  $ProtocolStatus.Add("ComputerName", $ComputerName)
  $ProtocolStatus.Add("Port", $Port)
  $ProtocolStatus.Add("KeyLength", $null)
  $ProtocolStatus.Add("SignatureAlgorithm", $null)
  $ProtocolNames | %{
  $ProtocolName = $_
  $Socket = New-Object System.Net.Sockets.Socket([System.Net.Sockets.SocketType]::Stream, [System.Net.Sockets.ProtocolType]::Tcp)
  $Socket.Connect($ComputerName, $Port)
  try {
  $NetStream = New-Object System.Net.Sockets.NetworkStream($Socket, $true)
  $SslStream = New-Object System.Net.Security.SslStream($NetStream, $true)
  $SslStream.AuthenticateAsClient($ComputerName, $null, $ProtocolName, $false )
  $RemoteCertificate = [System.Security.Cryptography.X509Certificates.X509Certificate2]$SslStream.RemoteCertificate
  $ProtocolStatus["KeyLength"] = $RemoteCertificate.PublicKey.Key.KeySize
  $ProtocolStatus["SignatureAlgorithm"] = $RemoteCertificate.PublicKey.Key.SignatureAlgorithm.Split("#")[1]
  $ProtocolStatus.Add($ProtocolName, $true)
  } catch {
  $ProtocolStatus.Add($ProtocolName, $false)
  } finally {
  $SslStream.Close()
  [PSCustomObject]$ProtocolStatus
  Test-SslProtocols -ComputerName "www.google.com"

  V2 version:
  function Test-SslProtocols {
  param(
  [Parameter(
  Mandatory=$true,
  ValueFromPipelineByPropertyName=$true,
  ValueFromPipeline=$true
  )]$ComputerName,
  [Parameter(
  ValueFromPipelineByPropertyName=$true
  )][int]$Port = 443
  begin {
  $protocols=[enum]::GetNames([System.Security.Authentication.SslProtocols])|?{$_ -notmatch 'none|default'}
  process {
  foreach($protocol in $protocols){
  $ProtocolStatus = @{
  ComputerName=$ComputerName
  Port=$Port
  KeyLength=$null
  SignatureAlgorithm=$null
  Protocol=$protocol
  Active=$false
  $Socket = New-Object System.Net.Sockets.Socket('Internetwork','Stream', 'Tcp')
  $Socket.Connect($ComputerName, $Port)
  try {
  $NetStream = New-Object System.Net.Sockets.NetworkStream($Socket, $true)
  $SslStream = New-Object System.Net.Security.SslStream($NetStream, $true)
  $SslStream.AuthenticateAsClient($ComputerName, $null, $protocol, $false )
  $RemoteCertificate = [System.Security.Cryptography.X509Certificates.X509Certificate2]$SslStream.RemoteCertificate
  $protocolstatus.Active=$true
  $ProtocolStatus.KeyLength = $RemoteCertificate.PublicKey.Key.KeySize
  $ProtocolStatus.SignatureAlgorithm = $RemoteCertificate.PublicKey.Key.SignatureAlgorithm.Split("#")[1]
  catch {
  Write-Host 'Failed'
  finally {
  New-Object PsObject -Property $ProtocolStatus
  $SslStream.Close()
  Test-SslProtocols -ComputerName www.google.com
  ¯\_(ツ)_/¯

• HT1373 if I have a Apple ID for my company provided iphone and now have a personal ipad with a different Apple ID, can I transfer data thru icloud?

  I have an apple id associated with my company provided iphone.  Just received an ipad air for christman and set up a different apple id. Can I transfer data thru icloud since I have 2 different apple ids?

  No. You must use the same Apple ID.

• Our company provided a bunch of us with Blackberry Curve...

  Our company provided a bunch of us with Blackberry Curves... my unit was the only one without video capture capabilities. Is there an app I can download to add this?

  Hi there!
  There are a multitude of questions/answers to go through to help you out, but those won't work unless you come to the forums and register an account. Please come to:
  http://supportforums.blackberry.com/rim/
  and register an account. Then post to the applicable forum.
  Thanks!
  Occam's Razor nearly always applies when troubleshooting technology issues!
  If anyone has been helpful to you, please show your appreciation by clicking the button inside of their post. Please click here and read, along with the threads to which it links, for helpful information to guide you as you proceed. I always recommend that you treat your BlackBerry like any other computing device, including using a regular backup schedule...click here for an article with instructions.
  Join our BBM Channels
  BSCF General Channel
  PIN: C0001B7B4   Display/Scan Bar Code
  Knowledge Base Updates
  PIN: C0005A9AA   Display/Scan Bar Code

• DO NOT Get The Service With This Company IF You Want to Receive a Good Customer Service

  It is really a pain, dissatisfaction, and a lot more when you have Verizon as your service provider. I have been having service for my cellphones with Verizon for over 3 years, and did not have any major problems, so when I moved to my new place I thought it’s better to get the Fios, and have one bill for my all Verizon services. I went online and started to order my products online. During ordering, the chat session opened and I started chatting with the Customer Service Rep in order to get help through the process. When we were in the step that I could order the home phone plan, I saw the International World Plan, and I asked the lady to give me some information about this plan. I asked her that I want to call to my country and I mentioned my country’s name to her as well. I asked her that if this service is available for my country, and she said “Yes” you can call to over 100 countries with this service and she encouraged me to get the 300 minutes service. Since the plan sounded good to me I decided to get the 500 minutes instead of 300 min, and after I ordered my plan, I started calling overseas, and happy that I am paying less than the Phone cards with this plan. On March 26 I received my bill, and saw that Verizon charged me 142 $ for the less than 200 minutes that I called to my country, and there was a Letter “N” in front of each phone calls. I checked the guide to see what does “N” mean, and I saw that it said N means “Denoted calls are NOT listed in World Plan”. Well, thanks to the lady who gave me the wrong information while I was ordering my plan online, but she or the Verizon company is not that much lucky because I printed my chat session the day I ordered my plan since I wanted to have the information of what I actually had ordered. That time I did not think that I may get in trouble like this. Since March 27th, I have been calling Verizon every other day, and I have explained my issue to more than 10 Customer Service Reps, and each of them asked me to fax my chat session to them. I have been faxing that to all the numbers that they gave me, and I am keep faxing them, but do not get any respond. One of the Verizon’s Supervisors, whose name is Mark, called twice on my home phone number during the daytime, around 3 pm, and he left massages. On his second massage, he said that he checked the plan and my country is not listed in the International World Plan. He just said this, and he said that he was going to call me back, but never happened. He also did not leave me any phone number that I could call back. Also, since my cellphones are listed in the same bill as my other products, he could easily see the other numbers that he could call and reach me, but he did not bother himself to do so. I have even changed my home voice mail greeting addressing to Verizon, and left my cellphone number in voice mail greeting. I am so sorry that I have to say this, but this seems a definite fraud to me. I did not know about this plan, and I asked the Customer Service Rep to help me. She was responsible to check my country, or at least let me know how I could find out about the coverage. This is ridiculous, and if Verizon cannot take over this problem, my lawyer will take the action over, and takes the issue to their corporate court. I am not going to give up about this, and I decide to give Verizon about a week or so to solve this issue, but I won’t wait more than that. Just a friendly advice to people who want to get the home service through Verizon: DO NOT Get The Service With This Company IF You Want to Receive a Good Customer Service. There is nothing about taking care of customer in this company, and you are going to be stuck with what you get.      

  Mahsa21,
  We are glad that we were able to resolve the international calling plan issue for you.  If you need assistance,please  reach out to us.
  thanks,
  Tonya D.

• Could not establish trust relationship for the SSL/TLS secure channel with authority SharePoint ssis connectors

  Hi All,
  I am using SharePoint List Connectors to load the data from Sharepoint list to  Sql server.
  I have created an ssis package and attached to the SQL agent job in works fine
  SharePoint Source dev url : http://company.dev.com (working fine)(http)
  DB server:(server\instance)
  I thought all i good and can test with the uat sharepoint url.
  I have changed the configuration url yo point to uat.(https)
  SharePoint Source dev url : https://companyuat.dev.com (working fine)
  DB server:(server\instance)
  Suddently it fails when  with the following error:
  In both the cases i am running the agent job from the same db server
  DB server:(server\instance)
  Error Message:
  Could not establish trust relationship for the SSL/TLS secure channel with authority 'companyuat.dev.com'. --->  System.Net.WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.
  ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
  Source: Data Flow Task SharePoint List Source [1] Description: System.ServiceModel.Security.SecurityNegotiationException: Could not establish trust relationship for the SSL/TLS secure channel with authority 'companyuat.dev.com'. ---> System.Net.WebException:
  The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.  
  Is there is workaround to reslove this?Any inputs highly appreciated as it is time to move to production :(.
  Thanks
  Ravi
  Ravi

  This is the important error: The remote certificate is invalid according to the validation procedure.
  Your SharePoint server certificate is invalid. You have to either correct your certificate or make your SSIS client machine explicitly trust the server certificate.
  SSIS Tasks Components Scripts Services | http://www.cozyroc.com/

• Map pearson email id with working Company Email ID

  Hi,
  I have taken the Oracle Certification exam using my personal email id. Is there any way to badge this with the Company Email ID . So that it should display in Specialzaion status.
  Thanks

  Your post doesn't provide sufficient details for me to be positive what your situation is.  I'll provide some background and then make some suggestions.
  There are two accounts, your Pearson Vue account and your OTN account.
  You take the test under the Pearson Vue account, but link to your Oracle Partner Network company through the OTN account.
  The Pearson Vue account and the OTN account are linked via your Oracle Testing ID.
  First of all, both my Pearson View account and my OTN account are under a non-company ID.  Despite that, I have badged my OTN account to my company. From this I know that it is not required that the OTN account use a company email.
  Second, theoretically the Pearson Vue account and the OTN account could use different email addresses.  I haven't tried this, but the two are linked by the testing ID rather than the email address, so I don't believe there is anything preventing this.
  If one of the above doesn't resolve your problem, I need more details.

• App licensing with a work provided i-device and a personal i-device

  If I have 5 personal i-devices I can license an App once and have it synced across the 5 personally owned i-devices.
  My questions relate to the following scenario:
  1) Work provides me an iPad and buys/installs some work related Apps
  2) I have a personally bought iPhone/iPod and I personall buy/install some non-work related Apps
  A) Am I allowed to have the work Apps installed on my iPhone?
  B) Am I allowed to have my personal Apps installed on my work iPad?

  For consumers:
  1. As a consumer you can, for personal use, buy a single license for an App and install that on as many iOS devices you own or control. There is thus no need to buy an App multiple times just because you want to use it on your iPhone, iPod touch and iPad.
  2. As a consumer you can authorize a single iTunes account on up to 5 computers. You can thus store your purchased Apps, music, etc. on up to 5 computers and synch iOS devices from those 5 computers. There is thus no need to buy an App multiple times just because you want to store and synch it from your laptop and your desktop computer.
  3. As a consumer you can authorize a single computer for more than one iTunes account and then synch Apps from up to 5 iTunes accounts to your iOS devices. On the iOS devices in the Store section of the Settings app you can log out of one iTunes account, log into another iTunes account and then purchase or redownload Apps using the App Store app. It is thus possible to put Apps on your kid's iPod touch that you purchased with your iTunes account as well as those your wife purchased with her iTunes account.
  for educational institutions, other organizations and commercial enterprises?
  1. You need to buy one license for an App for each iOS device if that device is used by multiple users or one license of an App per user if that user is using multiple devices.
  2. Your organization can authorize a single iTunes account on up to 5 computers. Your organization can thus store the purchased Apps on up to 5 computers and synch iOS devices from those 5 computers. There is thus no need to buy an App multiple times just because your organization wants to store and synch that App from a single employee's laptop and desktop computer.
  3. You can authorize a single computer for more than one iTunes account and then synch Apps from up to 5 iTunes accounts to your iOS devices. On the iOS devices in the Store section of the Settings app you can log out of one iTunes account, log into another iTunes account and then purchase or redownload Apps using the App Store app. It is thus possible to put Apps on a employee's iPhone that were purchased with the employee's personal iTunes account as well as those purchased with a company iTunes account.

• I have a "company provided Ipad" now using IOS 6.1.3.  the company Will allow me to upgrade to IOS 7 but not to IOS 8.  Is that possible?

  I have a "company provided Ipad" now using IOS 6.1.3.  the company Will allow me to upgrade to IOS 7 but not to IOS 8.  Is that possible?

  No, since the iPad 2 is iOS 8 compatible it can only be updated to iOS 8.  Apple does not support upgrading to interim iOS versions, and removes those files from the servers when a new version is released.  The only path for that iPad 2 is iOS 8.0.2.

• Is it possible for me to swap out the apple logo in the message screen saver with my company's logo If so, how? Thanks!

  Is it possible for me to swap out the apple logo in the message screen saver with my company's logo? If so, how? Thanks!

  How long will my iPod service take?
  If you choose to use the Online Service Assistant, or service via Apple Technical Support: If your iPod is not personalized, you can expect service to be completed within approximately one week from the time you send your iPod to Apple. If your iPod is personalized, you can expect service to be completed within approximately ten calendar days from the time you send your iPod to Apple.
  Attention iPod shuffle customers: Service for iPod shuffle is performed by means of an express replacement program, via Online Service Assistant or Apple Technical Support. For more details, please review the Express Replacement Service tab on the left.
  Above from:
  Apple - Support - iPod - Service FAQ
  If it is caused by a hardware problem there is nothing you can do to prevent it from recurring unless it was caused by abuse like from dropping the iPod.
  Otherwise make sure you ask apple how they fixed. it.

• PO created with wrong Company code

  Hi Gurus,
  I have Plant XXXX assigned to Company code 1111 and
           Plant YYYY assigned to Company code 2222
  One of the user has created PO with Plant XXXX and company code wrong as 2222.
  (we have warning message setup & not error message. So, it allowed user to create PO with wrong Company code and save)
  GR & IR both are already posted. I find the accounting document of these GR/IR show correct company code as XXXX-1111 (mostly would have taken correctly based on plant XXXX).
  These are service POs (non stock).
  Now user wants to change the company code in PO to 1111.
  I checked...and system simply allow to change to company code to correct one i.e 1111. It does not give any message.
  Could any one give me some additional info.. if it is right to do so? I am not too convinced at this moment.
  I was suggesting user to reverse GR, IR, delete PO and create new PO. Is that right?
  Thanks n advance for your input.
  Best Regards,
  Mohan

  Dear Mohan,
  U can change the company code in PO as it will not have any impact since the GR and IR is completed.
  Accounts are hit based on the valution area(valuation grouping code).
  Since the PO is already closed u can go ahead the change the same.
  Regards,
  AM Vahanan

• HT4528 Good afternoon ...  I would like to know how I can do to communicate with Verizone company to see if I can unlock my iPhone 5 which acquired in NY last year, buy it because you sold me released but is totally false ...  I welcome your comments ...

  Good afternoon ...  I would like to know how I can do to communicate with Verizone company to see if I can unlock my iPhone 5 which acquired in NY last year, buy it because you sold me released but is totally false ...  I welcome your comments ...

  Krawly11 wrote:
  That's what they told me at the time of purchase and that's why the team acquired ...
  But when I get to Venezuela and introduce NANO-Sim in a line to use the phone here just does not respond to the network ... None of the 3 phone lines we handle here ...
  It is a 64G IPhone 5 ... 
  Regardless, it is not a matter of carrier locking.  Verizon iPhone 5 phones were never GSM sim-locked to begin with.  Every iPhone Verizon has sold since the introduction of the iPhone 5 has been sold with an unlocked GSM slot, as required in the USA by their agreement with the FCC.  They have not been allowed to sell any iPhone 5, iPhone 5c nor iPhone 5s devices with GSM carrier locking in place.
  Your connection problems are from some other cause - it is NOT a carrier locking issue.

• SRM PO created with wrong company code

  Hello,
          The users have created several PO in SRM with wrong company code. The user was found in the wrong organization structure during the creation of shopping and approval. The PO did not get transfer to the Back because of this. Is there a way to modify the PO and change the company code.
     In case we want to modify it in the tables given that BBP_PD gives you an indication of which table and entry to modify, is there a way to do this operation (like SE16N in ECC)? Have you ever done this and what risk is their in such an operation.
  Thank you.

  Hi,
  I doubt anyone here will (or will dare) suggesting to you how to do it as it is against SAP practise totally. if the document is created wrongly, it should be deleted and approved with all the tracking and changes in place for auditing purposes.
  Frankly that is what you should practise as well.. my 2cents opinion.
  Regards.
  YS

• I am getting error message "SSL received a record with an incorrect Message Authentication Code" when trying to access a secure site

  I am having difficulty in accessing secure sites with Firefox v6.0.2 operating in Windows 7. I get the error message "Secure Connection Failed." SSL received a record with an incorrect Message Authentication Code. Error code: ssl_error_bad_mac_read. This happens will all https sites.

  It works after I disabled IPv6 in Firefox. Thank you for your help :)

• Vendor Master Creation through IDoc with Multiple Company Codes

  I am trying to create vendor masters sent from a 3rd party into SAP using CREMAS05 IDoc.  I have the requirement that the vendor should be created in each of 3 company codes and the vendor number is internally assigned in SAP.
  I create my IDoc with the general data E1LFA1M and multiple E1LFB1M & E1LFB5M Children.  When I post the IDoc using IDOC_INPUT_CREMAS which uses Call Transaction, the vendor gets created for the first company code, but the IDoc errors on the vendor extension XK01 for the next company code with the error: "Fill all required fields SAPMF02K 0111 ADDR1_DATA-NAME1". 
  In debugging through this, it appears that the vendor number that gets created in the first XK01 transaction does not get passed into the data for the second XK01 call and SAP tries to create a new vendor instead of extending the newly created one.
  If I force the value in during debug after the initial call transaction into the variable h_lifnr, it works fine (Vendor created with multiple company codes.
  Any help would be greatly appreciated.
  -Larry

  I cannot give you exact solution, but can guess why this is happening, below is what I believe.
  I think Synchronous update is not happening in call transaction, second transaction is getting processed before the first one is saved, debugging it works fine, because we give system enough time to save while processing.
  Generally in call transaction we have MODE, if we pass S - then synchronous update happens, in your case, you need to find the way to incorporate this.
  Hope it helps.
  Regards,
  Ravi Kishore.