Tomcat repeatedly prompts for client authentication w/ IIS as web server

Similar Messages

• Imp:How to find out whether client authentication Enabled on the Web Server

  Hi,
  I am trying to find out whether the Client Authentication Enabled on the Web Server or not.
  Reason for doing this, if we have two certificates in the key store which will authenticate the Web Server, JSSE Authentication will always take the first cert from the keystore. If the first Certificate is Expired, it will fail while doing the HandShake.
  So if I can find out whether Client Authentication is Enabled or not, then I can prompt a dialog for the user to select the Certificate for the Hand Shake.
  Thanks in advance for any Response,
  Krish.

  AUTH_TYPE will tell you only if it SSL or not. It won't say whether the Client Certificates Required for SSL Connection.
  Also, AUTH_TYPE is not part of the Http Headers.
  If there is any other solution, greatly appreciated.
  Thanks
  Krish.

• Certificates issued by communications server for client authentication

  Hi,
  we ran into problem with those certificates, that are being issued by the lync server itself.  In our enteprise we have CX600 and CX3000 phones, and i know that certificate authentication is required for the phones to work (both for registrar and webservice).
  However, now that users have lync installed, they have their communications server certificate assigned as well. The problem is when a user needs to sign a document with the certificate from our private CA, for most of the users, word or excel suggests to
  use a certificate issued by communications server, not our ent CA. Maybe there is a way for LYNC to trust private enteprise CA and not give out its own certificates and STILL use certificate authentication?
  Thanks!

  Facing almost the same issue, Lync (server) issues ClientAuth certs from "Communication Server", (btw
  is not trusted of course), and in turns forces users to make a selection of which VPN cert to use when dialing in, instead of only one ClientAuth cert installed, they now have 2 ClientAuth certs installed, which our internal CA's should care about and NOT
  the Lync (server).
  Don’t get how an MS product of this caliber can be built without proper PKI integration, how can it NOT utilize internally issued certs for client authentication???
  Not the first though, SCCM and OSD is another example....
  However, are you saying that Lync communication can’t be used without certificate authentication,
  without the user being spammed with credential prompts?
  Trying to get clarification on this…

• Prompt for Clients

  Greetings,
  Please help me.
  I'm not sure why when I go to to prompt for Clients name or Clients ID - all of the Clients Name doesn't show up.  It's not pulling all of the Clients name. The relationship between the tables are correct and it is set to dynamic.
  Thank you,
  Sophal Lanh

  Hi,
  Please verify that the LOV for the dynamic parameter is scheduled or not in the Business View Manager.
  If the LOV is not scheduled then please set a recurring schedule for it and then verify that the new values are automatically updated or not.
  Thanks

• Repeated prompts for Apple ID password in iTunes

  I can sign in to iTunes with both of my Apple ID's but then get repeated prompts for my password when I attempt to access purchased items or account information.  No similar problem on my Mac Book Pro or iPad.
  I have de-authorized and re-authorized the computer for both ID's.  I also looked for the SC folder but it cannot be found (Apple advises trashing it).  I therefore have no access to recent purchases or my own account information.  Help anyone?
  Mac Pro, OS X Yosemite, 10.10.1

  You may need to do a credit card "update" in your account.  Apparently "it" needed a re-verify because I had accessed my apple account from another computer.  Did so and it worked. Apple is opaque in many ways and it was totally unhelpful as it just kept rejecting my good password with no explanation.

• TS1389 iTunes repeatedly prompts for authorisation of songs. Help anyone?

  I recently purchased several songs on iTunes a couple won't play and repeatedly prompt for authorisation which it accepts and then asks for again. 
  I've tried all listed fixes, including authorising from the administrator account and removing the SC info multiple times but the songs still wont play.
  Any help appreciated!!
  Thanks!

  Delete and redownload them if doing so is free in your country.
  (79714)

• Outlook.office365 debug unable to launch the IIS Express Web server 49152

  Using office365 portal to test a mail app.
  I am using VS2013 and have deployed from VS2013 to my office365 portal.
  During the process of starting the debug of the mail app and window pops up stating:
  "Unable to launch the IIS Express Web server.
  Port '49152' is in use."
  Is this error message being given because the portal is refusing the connection or is this from being generated from my PC?
  this is from my "Immediate Window" page:
  Exception was thrown at line 70, column 21 in https://outlook.office365.com/owa/?realm=cisco234.onmicrosoft.com
  0x800a01ad - JavaScript runtime error: Automation server can't create object
  Exception was thrown at line 34, column 25599 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/preboot.js
  0x800a139e - JavaScript runtime error: SyntaxError
  Exception was thrown at line 82, column 543280 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.0.mouse.js
  0x800a01ad - JavaScript runtime error: Automation server can't create object
  Exception was thrown at line 2, column 781790 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a01b6 - JavaScript runtime error: Object doesn't support property or method 'get_$5oW'
  Exception was thrown at line 2, column 604470 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a138f - JavaScript runtime error: Unable to get property 'get_$1Qf' of undefined or null reference
  Exception was thrown at line 2, column 604470 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a138f - JavaScript runtime error: Unable to get property 'get_$1Qf' of undefined or null reference
  Exception was thrown at line 2, column 604470 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a138f - JavaScript runtime error: Unable to get property 'get_$1Qf' of undefined or null reference
  Exception was thrown at line 2, column 604470 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a138f - JavaScript runtime error: Unable to get property 'get_$1Qf' of undefined or null reference
  Exception was thrown at line 2, column 604470 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a138f - JavaScript runtime error: Unable to get property 'get_$1Qf' of undefined or null reference
  Exception was thrown at line 2, column 604470 in https://outlook.office365.com/owa/prem/15.0.913.9/scripts/boot.worldwide.1.mouse.js
  0x800a138f - JavaScript runtime error: Unable to get property 'get_$1Qf' of undefined or null reference

  Please post it here as this forum is meant only for Windows server general queries.
  http://community.office365.com/en-us/f/156.aspx
  http://www.arabitpro.com

• Java Client AUthentication to IIS 5 server throwing no IV for Cipher error

  I have trying to do Java client authentication. Got the Certificate from CA and loaded it in server. When I run the JavaClient program I get the
  error no IV for Cipher.
  I am using JDK 1.5.0_06 and JSSE 1.0.3_03.
  Any help is greatly appreciated.
  Thanks
  Here is the debug report
  trustStore is: C:\JTEST\cacerts
  trustStore type is : JKS
  trustStore provider is :
  init truststore
  adding as trusted cert:
  Subject: CN=devclient.test.com, OU=Mycompany, O=Second Data Corporation., L=San Francisco, ST=California, C=US
  Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  Algorithm: RSA; Serial number: 0x5b0bf
  Valid from Thu Feb 16 06:23:37 PST 2006 until Sat Feb 17 06:23:37 PST 2007
  adding as trusted cert:
  Subject: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
  Issuer: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
  Algorithm: RSA; Serial number: 0x1
  Valid from Fri Jun 25 17:19:54 PDT 1999 until Tue Jun 25 17:19:54 PDT 2019
  adding as trusted cert:
  Subject: CN=Baltimore CyberTrust Code Signing Root, OU=CyberTrust, O=Baltimore, C=IE
  Issuer: CN=Baltimore CyberTrust Code Signing Root, OU=CyberTrust, O=Baltimore, C=IE
  Algorithm: RSA; Serial number: 0x20000bf
  Valid from Wed May 17 07:01:00 PDT 2000 until Sat May 17 16:59:00 PDT 2025
  adding as trusted cert:
  Subject: CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
  Issuer: CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
  Algorithm: RSA; Serial number: 0x374ad243
  Valid from Tue May 25 09:09:40 PDT 1999 until Sat May 25 09:39:40 PDT 2019
  adding as trusted cert:
  Subject: CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
  Issuer: CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
  Algorithm: RSA; Serial number: 0x20000b9
  Valid from Fri May 12 11:46:00 PDT 2000 until Mon May 12 16:59:00 PDT 2025
  adding as trusted cert:
  Subject: CN=devclient.paymap.com, OU=First Data Corp, O=Paymap Inc, L=San Francisco, ST=California, C=USA
  Issuer: CN=Thawte Test CA Root, OU=TEST TEST TEST, O=Thawte Certification, ST=FOR TESTING PURPOSES ONLY, C=ZA
  Algorithm: RSA; Serial number: 0xe2501de73ac37428
  Valid from Mon Feb 20 15:51:25 PST 2006 until Mon Mar 13 15:51:25 PST 2006
  adding as trusted cert:
  Subject: CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
  Issuer: CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x9b7e0649a33e62b9d5ee90487129ef57
  Valid from Thu Sep 30 17:00:00 PDT 1999 until Wed Jul 16 16:59:59 PDT 2036
  adding as trusted cert:
  Subject: OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US
  Issuer: OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US
  Algorithm: RSA; Serial number: 0x0
  Valid from Tue Jun 29 10:39:16 PDT 2004 until Thu Jun 29 10:39:16 PDT 2034
  adding as trusted cert:
  Subject: [email protected], CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA
  Issuer: [email protected], CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA
  Algorithm: RSA; Serial number: 0x0
  Valid from Sun Dec 31 16:00:00 PST 1995 until Thu Dec 31 15:59:59 PST 2020
  adding as trusted cert:
  Subject: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
  Issuer: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x70bae41d10d92934b638ca7b03ccbabf
  Valid from Sun Jan 28 16:00:00 PST 1996 until Tue Aug 01 16:59:59 PDT 2028
  adding as trusted cert:
  Subject: OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US
  Issuer: OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US
  Algorithm: RSA; Serial number: 0x3770cfb5
  Valid from Wed Jun 23 05:14:45 PDT 1999 until Sun Jun 23 05:14:45 PDT 2019
  adding as trusted cert:
  Subject: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  Algorithm: RSA; Serial number: 0x35def4cf
  Valid from Sat Aug 22 09:41:51 PDT 1998 until Wed Aug 22 09:41:51 PDT 2018
  adding as trusted cert:
  Subject: [email protected], CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA
  Issuer: [email protected], CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA
  Algorithm: RSA; Serial number: 0x0
  Valid from Sun Dec 31 16:00:00 PST 1995 until Thu Dec 31 15:59:59 PST 2020
  adding as trusted cert:
  Subject: CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US
  Issuer: CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US
  Algorithm: RSA; Serial number: 0x4
  Valid from Sun Jun 20 21:00:00 PDT 1999 until Sat Jun 20 21:00:00 PDT 2020
  adding as trusted cert:
  Subject: [email protected], CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA
  Issuer: [email protected], CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA
  Algorithm: RSA; Serial number: 0x0
  Valid from Sun Dec 31 16:00:00 PST 1995 until Thu Dec 31 15:59:59 PST 2020
  adding as trusted cert:
  Subject: CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
  Issuer: CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
  Algorithm: RSA; Serial number: 0x1b6
  Valid from Fri Aug 14 07:50:00 PDT 1998 until Wed Aug 14 16:59:00 PDT 2013
  adding as trusted cert:
  Subject: OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
  Issuer: OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0xcdba7f56f0dfe4bc54fe22acb372aa55
  Valid from Sun Jan 28 16:00:00 PST 1996 until Tue Aug 01 16:59:59 PDT 2028
  adding as trusted cert:
  Subject: CN=GTE CyberTrust Root, O=GTE Corporation, C=US
  Issuer: CN=GTE CyberTrust Root, O=GTE Corporation, C=US
  Algorithm: RSA; Serial number: 0x1a3
  Valid from Fri Feb 23 15:01:00 PST 1996 until Thu Feb 23 15:59:00 PST 2006
  adding as trusted cert:
  Subject: CN=Entrust.net Secure Server Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/SSL_CPS incorp. by ref. (limits liab.), O=Entrust.net
  Issuer: CN=Entrust.net Secure Server Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/SSL_CPS incorp. by ref. (limits liab.), O=Entrust.net
  Algorithm: RSA; Serial number: 0x389b113c
  Valid from Fri Feb 04 09:20:00 PST 2000 until Tue Feb 04 09:50:00 PST 2020
  adding as trusted cert:
  Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
  Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x7dd9fe07cfa81eb7107967fba78934c6
  Valid from Sun May 17 17:00:00 PDT 1998 until Tue Aug 01 16:59:59 PDT 2028
  adding as trusted cert:
  Subject: [email protected], CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA
  Issuer: [email protected], CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA
  Algorithm: RSA; Serial number: 0x1
  Valid from Wed Jul 31 17:00:00 PDT 1996 until Thu Dec 31 15:59:59 PST 2020
  adding as trusted cert:
  Subject: OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US
  Issuer: OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US
  Algorithm: RSA; Serial number: 0x2ad667e4e45fe5e576f3c98195eddc0
  Valid from Tue Nov 08 16:00:00 PST 1994 until Thu Jan 07 15:59:59 PST 2010
  adding as trusted cert:
  Subject: CN=Entrust.net Client Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/Client_CA_Info/CPS incorp. by ref. limits liab., O=Entrust.net, C=US
  Issuer: CN=Entrust.net Client Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/Client_CA_Info/CPS incorp. by ref. limits liab., O=Entrust.net, C=US
  Algorithm: RSA; Serial number: 0x380391ee
  Valid from Tue Oct 12 12:24:30 PDT 1999 until Sat Oct 12 12:54:30 PDT 2019
  adding as trusted cert:
  Subject: CN=Entrust.net Client Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/GCCA_CPS incorp. by ref. (limits liab.), O=Entrust.net
  Issuer: CN=Entrust.net Client Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/GCCA_CPS incorp. by ref. (limits liab.), O=Entrust.net
  Algorithm: RSA; Serial number: 0x389ef6e4
  Valid from Mon Feb 07 08:16:40 PST 2000 until Fri Feb 07 08:46:40 PST 2020
  adding as trusted cert:
  Subject: OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
  Issuer: OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x2d1bfc4a178da391ebe7fff58b45be0b
  Valid from Sun Jan 28 16:00:00 PST 1996 until Tue Aug 01 16:59:59 PDT 2028
  adding as trusted cert:
  Subject: CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
  Issuer: CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x6170cb498c5f984529e7b0a6d9505b7a
  Valid from Thu Sep 30 17:00:00 PDT 1999 until Wed Jul 16 16:59:59 PDT 2036
  adding as trusted cert:
  Subject: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
  Issuer: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
  Algorithm: RSA; Serial number: 0x1a5
  Valid from Wed Aug 12 17:29:00 PDT 1998 until Mon Aug 13 16:59:00 PDT 2018
  adding as trusted cert:
  Subject: [email protected], CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA
  Issuer: [email protected], CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA
  Algorithm: RSA; Serial number: 0x1
  Valid from Wed Jul 31 17:00:00 PDT 1996 until Thu Dec 31 15:59:59 PST 2020
  adding as trusted cert:
  Subject: CN=GeoTrust Global CA, O=GeoTrust Inc., C=US
  Issuer: CN=GeoTrust Global CA, O=GeoTrust Inc., C=US
  Algorithm: RSA; Serial number: 0x23456
  Valid from Mon May 20 21:00:00 PDT 2002 until Fri May 20 21:00:00 PDT 2022
  adding as trusted cert:
  Subject: CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
  Issuer: CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
  Algorithm: RSA; Serial number: 0x3863b966
  Valid from Fri Dec 24 09:50:51 PST 1999 until Tue Dec 24 10:20:51 PST 2019
  adding as trusted cert:
  Subject: CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
  Issuer: CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
  Algorithm: RSA; Serial number: 0x1
  Valid from Sun Jun 20 21:00:00 PDT 1999 until Sat Jun 20 21:00:00 PDT 2020
  adding as trusted cert:
  Subject: OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US
  Issuer: OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US
  Algorithm: RSA; Serial number: 0x0
  Valid from Tue Jun 29 10:06:20 PDT 2004 until Thu Jun 29 10:06:20 PDT 2034
  adding as trusted cert:
  Subject: CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
  Issuer: CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x8b5b75568454850b00cfaf3848ceb1a4
  Valid from Thu Sep 30 17:00:00 PDT 1999 until Wed Jul 16 16:59:59 PDT 2036
  adding as trusted cert:
  Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
  Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0xb92f60cc889fa17a4609b85b706c8aaf
  Valid from Sun May 17 17:00:00 PDT 1998 until Tue Aug 01 16:59:59 PDT 2028
  adding as trusted cert:
  Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
  Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
  Algorithm: RSA; Serial number: 0x4cc7eaaa983e71d39310f83d3a899192
  Valid from Sun May 17 17:00:00 PDT 1998 until Tue Aug 01 16:59:59 PDT 2028
  trigger seeding of SecureRandom
  done seeding SecureRandom
  main, setSoTimeout(50000) called
  TIMEOUT=50000
  %% No cached client session
  *** ClientHello, TLSv1
  RandomCookie: GMT: 1123703368 bytes = { 11, 7, 242, 147, 134, 10, 57, 192, 137, 131, 191, 249, 253, 146, 232, 223, 146, 195, 53, 255, 121, 236, 182, 158, 191, 94, 156, 190 }
  Session ID: {}
  Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]
  Compression Methods: { 0 }
  main, WRITE: TLSv1 Handshake, length = 73
  main, WRITE: SSLv2 client hello message, length = 98
  main, READ: TLSv1 Handshake, length = 873
  *** ServerHello, TLSv1
  RandomCookie: GMT: 1123703296 bytes = { 123, 165, 102, 102, 169, 196, 229, 241, 3, 49, 81, 239, 83, 155, 209, 243, 236, 229, 18, 193, 228, 104, 27, 152, 232, 193, 173, 11 }
  Session ID: {147, 24, 0, 0, 22, 29, 124, 158, 177, 166, 96, 36, 217, 32, 191, 41, 36, 217, 54, 244, 11, 56, 214, 139, 133, 140, 38, 132, 157, 77, 87, 77}
  Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
  Compression Method: 0
  %% Created: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
  ** SSL_RSA_WITH_RC4_128_MD5
  *** Certificate chain
  chain [0] = [
  Version: V3
  Subject: CN=www.just-in-time-eft-paymap.com, OU=Paymap, O=First Data Corporation., L=San Francisco, ST=California, C=US
  Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
  Key: Sun RSA public key, 1024 bits
  modulus: 115897801846480906504507305240934762652258285705294305856746227593079520228602278416768070978663757452626836382370415992468189745643687252249588163510925353035555192020212360325664657305599855674966873189987712512397233103225326014387972568754281141553272745093478026229567341632738641376167448499163118598699
  public exponent: 65537
  Validity: [From: Mon Sep 12 11:37:51 PDT 2005,
                 To: Sun Nov 12 11:37:51 PST 2006]
  Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  SerialNumber: [    057aa7]
  Certificate Extensions: 5
  [1]: ObjectId: 2.5.29.14 Criticality=false
  SubjectKeyIdentifier [
  KeyIdentifier [
  0000: FC 76 D2 8C C3 DE 0D 8F EA 32 26 60 83 C9 8B 9C .v.......2&`....
  0010: C6 E6 BB 57 ...W
  [2]: ObjectId: 2.5.29.35 Criticality=false
  AuthorityKeyIdentifier [
  KeyIdentifier [
  0000: 48 E6 68 F9 2B D2 B2 95 D7 47 D8 23 20 10 4F 33 H.h.+....G.# .O3
  0010: 98 90 9F D4 ....
  [3]: ObjectId: 2.5.29.31 Criticality=false
  CRLDistributionPoints [
  [DistributionPoint:
  [URIName: http://crl.geotrust.com/crls/secureca.crl]
  [4]: ObjectId: 2.5.29.37 Criticality=false
  ExtendedKeyUsages [
  [1.3.6.1.5.5.7.3.1, 1.3.6.1.5.5.7.3.2]]
  [5]: ObjectId: 2.5.29.15 Criticality=true
  KeyUsage [
  DigitalSignature
  Non_repudiation
  Key_Encipherment
  Data_Encipherment
  Algorithm: [SHA1withRSA]
  Signature:
  0000: 44 D7 B0 69 BF B0 AA 4D 5A 17 70 9C 37 BA 61 A2 D..i...MZ.p.7.a.
  0010: 57 B4 34 85 6D 59 1F 82 72 34 9B 92 7D BD DF 27 W.4.mY..r4.....'
  0020: CE 97 E3 CA AE 23 5D 85 3C 1A C6 19 D1 49 C2 3F .....#].<....I.?
  0030: C6 E2 7E 97 8D 63 94 1E 04 AC 9F 5F 37 08 2A 96 .....c....._7.*.
  0040: 1A 47 D1 9D 69 0C 71 6A F3 74 1C FF 7D 20 E1 CA .G..i.qj.t... ..
  0050: 75 D0 45 84 2E 11 3C DD D4 73 25 38 76 27 E0 73 u.E...<..s%8v'.s
  0060: 70 AC 70 0F A5 E3 5B 9D 7E 0E AB 6A 79 07 18 38 p.p...[....jy..8
  0070: 5B A1 63 A2 89 8C 96 A1 50 36 4C D2 C6 D5 27 25 [.c.....P6L...'%
  Found trusted certificate:
  Version: V3
  Subject: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
  Key: Sun RSA public key, 1024 bits
  modulus: 135786214035069526348186531221551781468391756233528066061569654028671100866720352830303278016129003918213826297308054231261658522889438712013757624116391437358730449661353175673177742307421061340003741057138887918110217006515773038453829253517076741780039735595086881329494037450587568122088113584549069375417
  public exponent: 65537
  Validity: [From: Sat Aug 22 09:41:51 PDT 1998,
                 To: Wed Aug 22 09:41:51 PDT 2018]
  Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  SerialNumber: [    35def4cf]
  Certificate Extensions: 7
  [1]: ObjectId: 1.2.840.113533.7.65.0 Criticality=false
  Extension unknown: DER encoded OCTET string =
  0000: 04 0D 30 0B 1B 05 56 33 2E 30 63 03 02 06 C0 ..0...V3.0c....
  [2]: ObjectId: 2.5.29.14 Criticality=false
  SubjectKeyIdentifier [
  KeyIdentifier [
  0000: 48 E6 68 F9 2B D2 B2 95 D7 47 D8 23 20 10 4F 33 H.h.+....G.# .O3
  0010: 98 90 9F D4 ....
  [3]: ObjectId: 2.5.29.35 Criticality=false
  AuthorityKeyIdentifier [
  KeyIdentifier [
  0000: 48 E6 68 F9 2B D2 B2 95 D7 47 D8 23 20 10 4F 33 H.h.+....G.# .O3
  0010: 98 90 9F D4 ....
  [4]: ObjectId: 2.5.29.31 Criticality=false
  CRLDistributionPoints [
  [DistributionPoint:
  [CN=CRL1, OU=Equifax Secure Certificate Authority, O=Equifax, C=US]
  [5]: ObjectId: 2.5.29.15 Criticality=false
  KeyUsage [
  Key_CertSign
  Crl_Sign
  [6]: ObjectId: 2.5.29.16 Criticality=false
  PrivateKeyUsage: [
  To: Wed Aug 22 09:41:51 PDT 2018]
  [7]: ObjectId: 2.5.29.19 Criticality=false
  BasicConstraints:[
  CA:true
  PathLen:2147483647
  Algorithm: [SHA1withRSA]
  Signature:
  0000: 58 CE 29 EA FC F7 DE B5 CE 02 B9 17 B5 85 D1 B9 X.).............
  0010: E3 E0 95 CC 25 31 0D 00 A6 92 6E 7F B6 92 63 9E ....%1....n...c.
  0020: 50 95 D1 9A 6F E4 11 DE 63 85 6E 98 EE A8 FF 5A P...o...c.n....Z
  0030: C8 D3 55 B2 66 71 57 DE C0 21 EB 3D 2A A7 23 49 ..U.fqW..!.=*.#I
  0040: 01 04 86 42 7B FC EE 7F A2 16 52 B5 67 67 D3 40 ...B......R.gg.@
  0050: DB 3B 26 58 B2 28 77 3D AE 14 77 61 D6 FA 2A 66 .;&X.(w=..wa..*f
  0060: 27 A0 0D FA A7 73 5C EA 70 F1 94 21 65 44 5F FA '....s\.p..!eD_.
  0070: FC EF 29 68 A9 A2 87 79 EF 79 EF 4F AC 07 77 38 ..)h...y.y.O..w8
  *** ServerHelloDone
  *** ClientKeyExchange, RSA PreMasterSecret, TLSv1
  Random Secret: { 3, 1, 82, 2, 69, 241, 210, 36, 175, 168, 76, 86, 170, 3, 158, 52, 89, 146, 84, 210, 223, 113, 212, 231, 129, 100, 177, 125, 116, 31, 97, 233, 150, 162, 161, 51, 168, 189, 14, 47, 83, 27, 67, 252, 172, 191, 102, 39 }
  main, WRITE: TLSv1 Handshake, length = 134
  SESSION KEYGEN:
  PreMaster Secret:
  0000: 03 01 52 02 45 F1 D2 24 AF A8 4C 56 AA 03 9E 34 ..R.E..$..LV...4
  0010: 59 92 54 D2 DF 71 D4 E7 81 64 B1 7D 74 1F 61 E9 Y.T..q...d..t.a.
  0020: 96 A2 A1 33 A8 BD 0E 2F 53 1B 43 FC AC BF 66 27 ...3.../S.C...f'
  CONNECTION KEYGEN:
  Client Nonce:
  0000: 43 FA 5A 48 0B 07 F2 93 86 0A 39 C0 89 83 BF F9 C.ZH......9.....
  0010: FD 92 E8 DF 92 C3 35 FF 79 EC B6 9E BF 5E 9C BE ......5.y....^..
  Server Nonce:
  0000: 43 FA 5A 00 7B A5 66 66 A9 C4 E5 F1 03 31 51 EF C.Z...ff.....1Q.
  0010: 53 9B D1 F3 EC E5 12 C1 E4 68 1B 98 E8 C1 AD 0B S........h......
  Master Secret:
  0000: 10 47 C2 16 13 58 4B 50 D3 D6 34 05 C8 C9 11 29 .G...XKP..4....)
  0010: AD 90 0D 8F 9B BD C8 C1 FC CD BC 26 ED FB 26 84 ...........&..&.
  0020: 04 0B 94 BC D2 4D 7D 71 E0 1E 08 10 59 38 B5 4E .....M.q....Y8.N
  Client MAC write Secret:
  0000: A5 66 C1 48 0E F1 18 2B 2B 7A F7 9B A4 6C D7 FA .f.H...++z...l..
  Server MAC write Secret:
  0000: 3B F5 04 FA AC 9C D7 ED 2E E7 36 44 80 FF 11 E2 ;.........6D....
  Client write key:
  0000: 7B 9F 56 A1 FC 3D BD 31 25 27 91 BB D0 66 66 0B ..V..=.1%'...ff.
  Server write key:
  0000: 2B 45 E2 19 E8 C8 61 5B 84 B8 94 76 A1 B4 9C 6E +E....a[...v...n
  ... no IV for cipher
  main, WRITE: TLSv1 Change Cipher Spec, length = 1
  *** Finished
  verify_data: { 110, 253, 95, 109, 150, 89, 93, 140, 108, 186, 172, 188 }
  main, WRITE: TLSv1 Handshake, length = 32
  main, READ: TLSv1 Change Cipher Spec, length = 1
  main, READ: TLSv1 Handshake, length = 32
  *** Finished
  verify_data: { 70, 219, 18, 202, 105, 203, 83, 220, 151, 174, 102, 125 }
  %% Cached client session: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
  main, setSoTimeout(50000) called
  main, WRITE: TLSv1 Application Data, length = 96
  main, setSoTimeout(50000) called
  main, READ: TLSv1 Handshake, length = 20
  *** HelloRequest (empty)
  %% Client cached [Session-1, SSL_RSA_WITH_RC4_128_MD5]
  %% Try resuming [Session-1, SSL_RSA_WITH_RC4_128_MD5] from port 1130
  *** ClientHello, TLSv1
  RandomCookie: GMT: 1123703368 bytes = { 242, 6, 117, 127, 243, 197, 134, 82, 139, 54, 241, 243, 132, 22, 63, 136, 4, 180, 225, 8, 159, 55, 182, 105, 133, 226, 213, 167 }
  Session ID: {147, 24, 0, 0, 22, 29, 124, 158, 177, 166, 96, 36, 217, 32, 191, 41, 36, 217, 54, 244, 11, 56, 214, 139, 133, 140, 38, 132, 157, 77, 87, 77}
  Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]
  Compression Methods: { 0 }
  main, WRITE: TLSv1 Handshake, length = 121
  main, READ: TLSv1 Handshake, length = 11432
  *** ServerHello, TLSv1
  RandomCookie: GMT: 1123703296 bytes = { 168, 158, 224, 186, 230, 77, 9, 24, 237, 106, 203, 158, 176, 252, 249, 167, 73, 173, 69, 178, 115, 34, 96, 179, 191, 230, 178, 160 }
  Session ID: {3, 27, 0, 0, 51, 252, 181, 131, 214, 28, 220, 247, 154, 175, 51, 237, 76, 111, 88, 78, 28, 105, 106, 114, 42, 51, 53, 144, 178, 93, 245, 127}
  Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
  Compression Method: 0
  %% Created: [Session-2, SSL_RSA_WITH_RC4_128_MD5]
  ** SSL_RSA_WITH_RC4_128_MD5
  *** Certificate chain
  chain [0] = [
  Version: V3
  Subject: CN=www.just-in-time-eft-paymap.com, OU=Paymap, O=First Data Corporation., L=San Francisco, ST=California, C=US
  Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
  Key: Sun RSA public key, 1024 bits
  modulus: 115897801846480906504507305240934762652258285705294305856746227593079520228602278416768070978663757452626836382370415992468189745643687252249588163510925353035555192020212360325664657305599855674966873189987712512397233103225326014387972568754281141553272745093478026229567341632738641376167448499163118598699
  public exponent: 65537
  Validity: [From: Mon Sep 12 11:37:51 PDT 2005,
                 To: Sun Nov 12 11:37:51 PST 2006]
  Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  SerialNumber: [    057aa7]
  Certificate Extensions: 5
  [1]: ObjectId: 2.5.29.14 Criticality=false
  SubjectKeyIdentifier [
  KeyIdentifier [
  0000: FC 76 D2 8C C3 DE 0D 8F EA 32 26 60 83 C9 8B 9C .v.......2&`....
  0010: C6 E6 BB 57 ...W
  [2]: ObjectId: 2.5.29.35 Criticality=false
  AuthorityKeyIdentifier [
  KeyIdentifier [
  0000: 48 E6 68 F9 2B D2 B2 95 D7 47 D8 23 20 10 4F 33 H.h.+....G.# .O3
  0010: 98 90 9F D4 ....
  [3]: ObjectId: 2.5.29.31 Criticality=false
  CRLDistributionPoints [
  [DistributionPoint:
  [URIName: http://crl.geotrust.com/crls/secureca.crl]
  [4]: ObjectId: 2.5.29.37 Criticality=false
  ExtendedKeyUsages [
  [1.3.6.1.5.5.7.3.1, 1.3.6.1.5.5.7.3.2]]
  [5]: ObjectId: 2.5.29.15 Criticality=true
  KeyUsage [
  DigitalSignature
  Non_repudiation
  Key_Encipherment
  Data_Encipherment
  Algorithm: [SHA1withRSA]
  Signature:
  0000: 44 D7 B0 69 BF B0 AA 4D 5A 17 70 9C 37 BA 61 A2 D..i...MZ.p.7.a.
  0010: 57 B4 34 85 6D 59 1F 82 72 34 9B 92 7D BD DF 27 W.4.mY..r4.....'
  0020: CE 97 E3 CA AE 23 5D 85 3C 1A C6 19 D1 49 C2 3F .....#].<....I.?
  0030: C6 E2 7E 97 8D 63 94 1E 04 AC 9F 5F 37 08 2A 96 .....c....._7.*.
  0040: 1A 47 D1 9D 69 0C 71 6A F3 74 1C FF 7D 20 E1 CA .G..i.qj.t... ..
  0050: 75 D0 45 84 2E 11 3C DD D4 73 25 38 76 27 E0 73 u.E...<..s%8v'.s
  0060: 70 AC 70 0F A5 E3 5B 9D 7E 0E AB 6A 79 07 18 38 p.p...[....jy..8
  0070: 5B A1 63 A2 89 8C 96 A1 50 36 4C D2 C6 D5 27 25 [.c.....P6L...'%
  Found trusted certificate:
  Version: V3
  Subject: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
  Key: Sun RSA public key, 1024 bits
  modulus: 135786214035069526348186531221551781468391756233528066061569654028671100866720352830303278016129003918213826297308054231261658522889438712013757624116391437358730449661353175673177742307421061340003741057138887918110217006515773038453829253517076741780039735595086881329494037450587568122088113584549069375417
  public exponent: 65537
  Validity: [From: Sat Aug 22 09:41:51 PDT 1998,
                 To: Wed Aug 22 09:41:51 PDT 2018]
  Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US
  SerialNumber: [    35def4cf]
  Certificate Extensions: 7
  [1]: ObjectId: 1.2.840.113533.7.65.0 Criticality=false
  Extension unknown: DER encoded OCTET string =
  0000: 04 0D 30 0B 1B 05 56 33 2E 30 63 03 02 06 C0 ..0...V3.0c....
  [2]: ObjectId: 2.5.29.14 Criticality=false
  SubjectKeyIdentifier [
  KeyIdentifier [
  0000: 48 E6 68 F9 2B D2 B2 95 D7 47 D8 23 20 10 4F 33 H.h.+....G.# .O3
  0010: 98 90 9F D4 ....
  [3]: ObjectId: 2.5.29.35 Criticality=false
  AuthorityKeyIdentifier [
  KeyIdentifier [
  0000: 48 E6 68 F9 2B D2 B2 95 D7 47 D8 23 20 10 4F 33 H.h.+....G.# .O3
  0010: 98 90 9F D4 ....
  [4]: ObjectId: 2.5.29.31 Criticality=false
  CRLDistributionPoints [
  [DistributionPoint:
  [CN=CRL1, OU=Equifax Secure Certificate Authority, O=Equifax, C=US]
  [5]: ObjectId: 2.5.29.15 Criticality=false
  KeyUsage [
  Key_CertSign
  Crl_Sign
  [6]: ObjectId: 2.5.29.16 Criticality=false
  PrivateKeyUsage: [
  To: Wed Aug 22 09:41:51 PDT 2018]
  [7]: ObjectId: 2.5.29.19 Criticality=false
  BasicConstraints:[
  CA:true
  PathLen:2147483647
  Algorithm: [SHA1withRSA]
  Signature:
  0000: 58 CE 29 EA FC F7 DE B5 CE 02 B9 17 B5 85 D1 B9 X.).............
  0010: E3 E0 95 CC 25 31 0D 00 A6 92 6E 7F B6 92 63 9E ....%1....n...c.
  0020: 50 95 D1 9A 6F E4 11 DE 63 85 6E 98 EE A8 FF 5A P...o...c.n....Z
  0030: C8 D3 55 B2 66 71 57 DE C0 21 EB 3D 2A A7 23 49 ..U.fqW..!.=*.#I
  0040: 01 04 86 42 7B FC EE 7F A2 16 52 B5 67 67 D3 40 ...B......R.gg.@
  0050: DB 3B 26 58 B2 28 77 3D AE 14 77 61 D6 FA 2A 66 .;&X.(w=..wa..*f
  0060: 27 A0 0D FA A7 73 5C EA 70 F1 94 21 65 44 5F FA '....s\.p..!eD_.
  0070: FC EF 29 68 A9 A2 87 79 EF 79 EF 4F AC 07 77 38 ..)h...y.y.O..w8
  *** CertificateRequest
  Cert Types: RSA,
  Cert Authorities:
  <OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>
  <CN=Sonera Class1 CA, O=Sonera, C=FI>
  <OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>
  <CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL>
  <CN=VeriSign Class 3

  I have the same problem. I�m turning crazy working with certificates in mutual athetication!!!
  If someone has the solution to this problem, send a repy or at [email protected]
  Thanks in advance

• Outlook 2013 repeatedly prompts for password when connecting to Exchange Server 2010

  I am trying to configure Outlook 2013 on a Windows 8.1 Pro client.  The exchange server is 2010 SP1 and works just fine with OL 2010.
  When I configure OL 2013, the configuration prompts for a password for the account repeatedly with both NTLM and Basic Authentication chosen.  OL 2013 tries to connect and then it disconnects with the password for the account repeatedly prompted. When
  the credentials are entered, the prompt reappears immediately.
  Might anyone help?
  Many thanks in advance
  Shuvo

  Hi Shuvo,
  Please check whether this user can access mailbox in OWA. Please manual setup this account in Control Panel to have a try. Make sure your
  Server name and User name are configured correctly. If you are configure the account in internal domain environment, please click
  More Settings, set Negotiate Authentication in
  Security tab and uncheck Connect to Microsoft Exchange using HTTP in Connection tab.
  If there is any updates, please feel free to let us know.
  Thanks,
  Winnie Liang
  TechNet Community Support

• Outlook 2013 patch of November 12, 2013 makes Outlook repeatedly prompt for credentials

  Hi,
  Since November 12 Tuesday patch day my Outlook 2013 would repeatedly prompt me for credentials on one of my Exchange account. I reported this to our help desk in charge of mail services and they couldn't explain how this can happen as my mailbox was configured
  correctly using Auto Discovery. Deleting and recreating my Outlook profile did not help as didn't further tips found on the net. I could confirm my correct credentials 10 times in a row and the window wouldn't stop popping up immediately again. If I clicked
  cancel, the prompts would reappear after a couple of minutes. This can be hugely disruptive to one's productivity.
  Since I realized all had been fine since that massive roll out of updates, I began to wonder which update exactly may have caused it. My plan was to uninstall updates of that day one by one and to narrow down the culprit.
  My first shot was successful:
  Security Update of Microsoft Outlook 2013 (KB2837618) 32-Bit edition
  When uninstalling this one, another update is removed automatically:
  Update for Microsoft Office 2013 (KB2837643) 32-Bit edition
  That was it. Once these guys were removed, there was finally peace again. But beware! If you have automatic Windows Updates enabled, they are quietly streamed back to your computer in a matter of minutes and the infernal prompts start again. Hence, you basically
  have to turn automatic updates off and then make sure these get not installed again in future.
  At least until Microsoft provides a patch for the patch.
  As a sidenote, I should mention that this problem only occurs for one of my 3 Exchange accounts, all with different companies (none is a Microsoft Cloud-based one). So perhaps it is the interaction of that new update AND some faulty server-side settings that
  are at the root of the problem, really. As I'm no sys admin, I wouldn't know how to figure it out but leave the clues given here to the experts. Very ironically, I never encountered any problems with any of my Exchange accounts on any of my Mac or iOS clients.
  EDIT: In the bugfix description ttp://support.microsoft.com/kb/2837618 they list under known issues: "After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook. This issue is caused because the update
  disables remote intermediate certificate fetching in Outlook." And then they give you a registry hack to apply at your own risk. I do not know how to decipher this, do "issues with S/MIME certificate verification" give rise to the infinite loop
  of credential prompts?

  With the MS update rollout of 14 January 2014, the new patch to remove manually to maintain normal functionality and not have the above repeated credential prompts is: KB2850061 (Update for Microsoft Outlook 2013), http://support.microsoft.com/kb/2850061
  Otherwise, since that day, the prompts kept reappearing on my computer.
  Please vote up my posts if you find this information useful.

• [Maybe solved] Repeated prompts for username and password on HTTP(S)

  I'm new to IOS but I'm taking ICND 1 and ICND 2 to catch up. I've gone as far as configuring a 3560 switch from "scratch" in a test environment, and am in part one of ICND 2.
  Setting this switch up for HTTP administration, I've been prompted repeatedly for my username and password both when using a browser directly and when using Cisco Network Assistant (currently 5.5). This is different from the production switches I'm working with, that will prompt me once only and let me work. At first I suspected this was because I'm trying to use SSL and an in-house certitficate authority to sign the switch's certificate, but this is happening in plain HTTP as well.  If I'm persistent enough, I eventually get the pages or configuration screens I want.
  The difference between the production 3560s and my testing one, is the test one uses IOS 12.2(53), the current version.  The production ones use 12.2(25)SEE3 through 12.2(35)SE5 and probably everything in between.  I'm also experimenting with the releases that includes the web-based device manager on my test switch, but the behaviour is similar whether the image has the web-based manager or not.

  In an update to this problem, I've reverted the switch I've been testing back to 12.2(35)SE5, which is what the majority of my production 3560s use. It appears to behave in the same fashion: Repeatedly asking for credentials over HTTP(S).
  While my non-production switch has a local user database set up, my production switches use two ACS servers.  The relevant bits of the running config are:
  aaa new-model
  aaa group server tacacs+ mcbhtacacs
  server 10.1.2.221
  server 10.1.2.222
  aaa group server radius mcbhradius
  server 10.1.2.221 auth-port 1645 acct-port 1646
  server 10.1.2.222 auth-port 1645 acct-port 1646
  aaa authentication login default group mcbhtacacs local
  aaa authentication login LOCALAUTH local
  aaa authorization exec default group mcbhtacacs
  aaa accounting send stop-record authentication failure
  aaa accounting exec default start-stop group mcbhtacacs
  aaa accounting commands 1 default start-stop group mcbhtacacs
  aaa accounting commands 15 default start-stop group mcbhtacacs
  aaa accounting system default start-stop group mcbhtacacs
  aaa session-id common
  tacacs-server host 10.1.2.221 key 7 [censored]
  tacacs-server host 10.1.2.222 key 7 [censored]
  tacacs-server directed-request
  radius-server host 10.1.2.221 auth-port 1645 acct-port 1646 key 7 [censored]
  radius-server host 10.1.2.222 auth-port 1645 acct-port 1646 key 7 [censored]
  radius-server source-ports 1645-1646
  Another switch that does work without repeated prompting has these relevant bits:
  aaa new-model
  aaa group server tacacs+ mcbhtacacs
  server 10.1.2.221
  server 10.1.2.222
  aaa group server radius mcbhradius
  server 10.1.2.221 auth-port 1645 acct-port 1646
  server 10.1.2.222 auth-port 1645 acct-port 1646
  aaa authentication login default group mcbhtacacs local
  aaa authentication login LOCALAUTH local
  aaa authorization exec default group mcbhtacacs local
  aaa accounting send stop-record authentication failure
  aaa accounting exec default start-stop group mcbhtacacs
  aaa accounting commands 1 default start-stop group mcbhtacacs
  aaa accounting commands 15 default start-stop group mcbhtacacs
  aaa accounting system default start-stop group mcbhtacacs
  aaa session-id common
  tacacs-server host 10.1.2.221 key 7 [censored]
  tacacs-server host 10.1.2.222 key 7 [censored[
  tacacs-server directed-request
  radius-server host 10.1.2.221 auth-port 1645 acct-port 1646 key 7 [censored]
  radius-server host 10.1.2.222 auth-port 1645 acct-port 1646 key 7 [censored]
  radius-server source-ports 1645-1646
  10.1.2.221 and 10.1.2.222 are the ACS servers, running ACS 4.1 and are linked to a pair of Active Directory domain controllers.
  Aside from host names, these two switches appear to have an identical AAA configuration.  So why would the first switch repeatedly ask for credentials over HTTP when the second switch with the same software does not?

• Repeatedly prompted for air play password?

  At work I am repeatedly prompted to enter a password for Air Play though I've never even setup an Air Play password.  This just started happening to me recently and is random.....some days it never pops up and days like today It's popped up multiple times.  Very frustrating.

  Hello leavitt050,
  It may help to force close all open apps and reset your device.
  Force an app to close in iOS
  http://support.apple.com/en-us/HT5137
  Turn your iOS device off and on (restart) and reset
  http://support.apple.com/en-us/HT1430
  If you're still getting prompted for an AirPlay password, the next step would be to reinstall iOS on your device by placing it in Recovery Mode, then choosing Update in iTunes.
  Make sure that you have iTunes 12 or later on your computer.
  Put your device in recovery mode.
  When you get the option to restore or update, select Update. This will reinstall iOS without erasing your data.
  If your iPhone, iPad, or iPod touch doesn't respond or doesn't turn on
  https://support.apple.com/en-us/HT201412
  Cheers,
  Allen

• How to use digital certificate for client authentication in PCK

  My sap jca adapter need support digital certificate on client authentication. how to implement it in j2ee or pck?
  Message was edited by: Spring Tang

  refer the following links
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/092dddc6-0701-0010-268e-fd61f2035fdd
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/b2a56861-0601-0010-bba1-e37eb5d8d4a9
  please let me know if u dont find relevant information

• Repeatedly Prompted for iCloud Password

  I have an iPad mini with iOS 7.1.2 installed. It was new out of the box two weeks ago (warranty replacement for one that had a different problem). I didn't restore from any previous backup, but I did connect to my iCloud and iTunes accounts before re-downloading the apps I wanted and syncing with my iTunes library to add photos and other miscellany.
  For the last several days I have been prompted two or three times a day to enter my iCloud password when I unlock the device. There is no discernible pattern, but so far I have not been prompted for it while using the device - only immediately upon unlocking. I have tried the following, based on suggestions in other forums: (1) delete and re-connect iCloud account; (2) delete iCloud account, power device off and on, re-connect iCloud account; (3) delete iCloud account; restore network settings; power device off and on; re-connect iCloud account. The problem persists. Today, for the first time, I received a notification while the device was locked alerting me that I needed to verify my iCloud password for iCloud backup.
  The device otherwise operates normally, with one, one-time exception that I mention only in case it presents a pattern that I'm not experienced enough to see: yesterday, with cellular data off, I was connected to my home wifi and browsing with no problem. Without warning, the wifi connection dropped, or appeared to drop. I went into settings and verified that wifi was enabled, and that my home wifi network was selected. It was, and the settings panel showed a connection (but there was no wifi symbol in the status bar, and no actual connection). The wifi was working properly; both my phone and my laptop, within five feet of each other and the iPad, were experiencing no connectivity issues. Switching to airplane mode and back did not solve the problem, but powering off and on did, and it has not recurred.
  I would appreciate any assistance. I have not yet made a Genius Bar appointment, as there is no guarantee that I could replicate the problem in-store (though I do have screencaps of some but not all of the prompts). Thanks very much.

  Hi
  Have you tried allowing cookies and west data in safari

• Can iDSIE (Meta-directory) be used as a single authentication point from iPlanet Web Server for multiple databases using direct "or" indirect connectors?

  Basically, the latest release of iPlanet Web Server forces the user/group information source to be an LDAP database. Currently, the user accounts are in Active Directory, NT, Oracle and NetWare Directory Service in this heterogeneous environment.
  What I am looking for is a meta-directory product which can do two things:
  1-Single authentiation point for users in mulitple databases from iPlanet Web Server.
  2-Single administration point for all of the databases listed above.
  For example, can I add/modify/delete a user account at the meta-directory level and have this propagate to all of the databases listed above reducing the administration to one meta-directory product?

  With an Virtual Directory solution, you can authenticate Iplanet Web Server against nearly anything including any LDAPv3 Directory Server, Microsoft Active Directory, Windows NT Domains, Oracle RDBMS, IBM DB2 RDBMS, Microsoft SQL, and others.
  All of this is done dynamically and doesn't require any heavyweight synchronization process. The Virtual Directory acts as a dynamic schema / DIT / data translation engine for different types of repositories.
  OctetString's Virtual Directory Engine is one such example. You can download a 30 day evaluation copy at:
  http://www.octetstring.com
  It will take you all of 30 minutes to get iPlanet Web Server authenticated against and using groups from things like Oracle RDBMS, Windows NT Domains, or Active Directory.