Using JSSE : "Invalid Netscape CertType extension for SSL client" Error

Similar Messages

• Can I use a 10 ft USB extension for my HP printer?

  Can I use a 10 ft USB extension for my HP printer?

  USB 1.1/2.0 specifies a maximum cable length of 5 meters (~16 feet) - http://photo.stackexchange.com/questions/8679/whats-the-maximum-length-of-usb-ca ble-that-you-can-use-for-tethering

• Native Extension for AIR publishing error : framework not found

  Hello,
  I'm trying to build an iOS app using native extensions for AIR, but when I publish, I've an error message saying : framework not found
  I tried with this ANE for GameCenter integration : https://github.com/StickSports/ANE-Game-Center
  it says " ld: framework not found GameKit "
  Same problem with GREE Platform SDK for AIR :
  https://docs.developer.gree.net/en/globaltechnicalspecs/#sdkforair
  it says " ld: framework not found CoreTelephony "
  The thing is that these frameworks are already included, I guess.
  I'm using flash cs6 on mac, and I've included the path to iOS SDK in the publishing settings.

  Are you using the ANE from there or are you recompiling the ANE at your end?
  If you are recompiling, please make sure that you are using the platform.xml file they have provided.
  If you are using their precompiled ANEs, probably, the path to iOS SDK is not correct. It should be upto the folder iPhoneOSx.y.sdk.

• Need reasons not to use SMB/win2003 as file server for mac clients

  hey guys,
  i'm looking for reasons not to use windwos2003 as fileserver with smb for use with os x in a graphic production environment.
  can someone help? just need a sum up for "internal use"
  smb seems to be slower than afp
  etc...
  thank you!

  Well, it tends to be that saving over the network from Adobe and Quark apps "just works better" over AFP than it does over SMB.
  Put another way, people wouldn't be paying $4000 for a software license form Extreme-ZIP so they can serve AFP from a Windows 2003 server if there wasn't a real benefit to this. You can get an Xserve for this same $4000

• Is there any in build access security feature in apple tv? I am using this device as a service for my client and am afraid third party would cut in and display other contents.

  I am planning to ofgfer the apple TV services for my client in a number of room. I know that apple TV could be set with different ID/label to differentiate them if I am, installing multiple device within the same wireless coverage SSID. However, how do I prevent intruders cutiing in with some other contents while my client is doing the presentation? For example in Room A, client A is doing the video opresentation vioa his Mac book Pro. there is always a possibility that some people with OS X Mountain Lion detect the device and decide to play a prank and start to push other contents to the Apple TV device in Room A. If the device could provide an authentication feature, there will actually resolve my concern. Appreciate any feedback. Thanks Richard

  Hi soo.richard,
  You say it could be intruders cutting in - same problem/solution as for any network I think. Access can be password protected or access limited via MAC address filtering. I'm not sure how Apple Tv works with a hidden SSID but that would be another option.
  Airplay itself can be password protected through the airplay settings.
  I'm not sure if Apple TV works with other authentication such as a password but maybe the manual will assist with this?
  Hope this helps.

• Using Java keystores with SAP Netweaver for SSL

  Hi all,
  I'm configuring Netweaver to use SSL and trying to reuse our client and server sertificates from the Tomcat, which are stored in java keystore files. What I've tried is to import the keystore file using the Import Keystore View function in NWA/KeyStorage GUI. I'm getting an error, when trying to do so. Is such a function supported by the Netweaver at all, so could I use standard java keystores somehow? What could I do alternatively?
  regards,

  I have only "NegativeArraySizeException" displayed on the top of the NWA screen without any further details. I've also tried both .jks file extension or left it blank, the same error. The only workaround I've found at the moment is to export certificates to separate files one by one from my JKS (using JDK's keytool -export command) and then import them to the ICM_SSL_<instance> keystore view (using Import Entry button). Of course, it's only a workaround, because the amount of client certificates could grow significally for the productive system. So, I'm still looking for some solution to use standard Java Keystores (JKS) in NWA/KeyStorage

• Mail / pages / numbers quit unexpectedly while using the BJPDELocalizedString2 plugin  in Word for mac a error mesage comes up when trying to print "Error, no pages found/file name"

  Mail will not print, pages will not print . . . pages / mail quits unexpectedly while using the BJPDELocalizedString2 plugin.  Tryed in Word for Mac. . .Error message; no pages found / filename This all happened when I unstalled brother P-touch.

  Restart the computer in safe mode. Certain caches maintained by the system will be rebuilt.
  Safe mode is much slower to start up than normal. The next normal startup may also be somewhat slow.
  When the login screen appears, restart as usual (not in safe mode) and test. There's no need to log in while in safe mode.
  Note: If FileVault is enabled, or if a firmware password is set, or if the startup volume is a software RAID, you can’t start in safe mode. In that case, ask for instructions.

• OracleAS Portal Extension for Macromedia Dreamweaver errors

  I have installed the .ear file and the extenstion into Dreamweaver without any problems.
  I then created a Portal Template page and tried to save it to the Portal (Portal - Save As). Entering the Portal instance and testing this was ok but then when I try and save my new template to Portal I get an error:
  "A local copy of the file must be present before uploading the Template to Portal. Would you like to save a copy now ?"
  If I OK this I then get the following error:
  "While executing onClick, the following Javascript error(s) occurred:
  At line 443 of file c:\Program Files\Dreamweaver MX\Configuration\Commands\saveAsTemplate.js": The function closeDocument() is currently unavailable"
  Any ideas ?
  Anyone got this to work ?
  Thanks
  Simon.

  Hi Simon
  wrt to the "This Template was either not stored properly or defined incorrectly. This Template cannot be opened" error.
  One of the probable causes for this error is when you define more than one portal connections with the same name or you define a portal connection with a name which has invalid characters and then save a template into that portal or try to open a template from that portal.
  This error basically means that the web service is returning a null value or an undefined value for the template code. This could also be because of malformed template code.
  Could you please check the following:
  1. You have not defined more than one portal connections with the same name
  2. You have not defined the portal connection with a name that has invalid characters.
  3. Template does not have malformed code.
  Hope this helps,
  Ramya

• Can i use JSSE in my applet.?

  Hi All,
  With JSSE being a standard API in jdk1.4 i was wondering whether i can use JSSE in my applet to talk SSL to a server?. Basically i want to use SSLSocket instead of using brower's HTTPS support. Will jvm's security manager(for applet) allow me to open a SSL socket??. Please give me your thoughts on this...
  Thx a ton
  Ram

  Dear Ram
  You can't use directly. You have to sign your applet to use JSSE. As it requires to excess system settings which are not fisible if the applets are not signed.
  Hence to use it in applets jyust sign the applet and then you can do it.
  Good luck

• SunPKCS11 doesn't work as default keystore provider for SSL connections

  Hi all,
  I'm experiencing a problem using SunPKCS11 as a keystore provider for SSL.
  Below the code that doesn't work as expected:
  String pkcs11config = "name = " + "bit4id" + "\nlibrary = " + "c:/windows/system32/bit4p11.dll";
  byte[] pkcs11configBytes = pkcs11config.getBytes();
  ByteArrayInputStream configStream = new ByteArrayInputStream(
  pkcs11configBytes);
  AuthProvider pkcs11Provider = new sun.security.pkcs11.SunPKCS11(
  configStream);
  pkcs11Provider.setCallbackHandler(new MyGuiCallbackHandler());
  if (Security.getProvider(pkcs11Provider.getName()) != null) {
  Security.removeProvider(pkcs11Provider.getName());
  Security.insertProviderAt(pkcs11Provider, 2);
  //Security.insertProviderAt(pkcs11Provider, 1);
  System.setProperty("javax.net.ssl.keyStoreProvider",
  pkcs11Provider.getName());
  System.setProperty("javax.net.ssl.keyStoreType",
  "PKCS11");
  System.setProperty("javax.net.ssl.keyStore",
  "NONE");
  KeyManager[] KM = {KeyStore.getInstance("PKCS11") };
  SSLContext sslcont = SSLContext.getInstance("SSL");
  sslcont.init(null  /*KM*/ , tmS, rng);If i use KM everything works fine, but if I try to initialize the sslcontext using the default keyStoreProvider (just replacing KM with null, and without any other modification to the code), it uses SUN instead of PKCS11, even if I set the system properties javax.net.ssl.keyStore* (as you can see in my code)
  Can anyone help me?
  Thank's in advance and happy new year,
  Patrizio

  That's what I tried first, but it didn't work.
  I followed instructions at
  http://java.sun.com/j2se/1.5.0/docs/guide/security/jsse/JSSERefGuide.html#CustomizingStores
  Then I found something about dynamic provider allocation at
  http://forum.java.sun.com/thread.jspa?forumID=2&threadID=5172412
  so I tried to dynamically allocate SunPKCS11-bit4id as a provider.
  Any suggestion?

• Popup Key LOV, NULL and "Invalid numeric value undefined for column"

  Hello.
  I've created an item based on database column of NUMBER type and set the following properties:
  Display As = Popup Key LOV (Displays description, returns key value)
  List of values definition=select 'display_value' d, 1 r from dual
  Null display value=%
  Null return value=
  Display Null=Yes
  When I select "%" in the LOV and try to apply changes to database I get error:
  ORA-20001: Error in DML: p_rowid=1781, p_alt_rowid=N1, p_rowid2=, p_alt_rowid2=. ORA-20001: Invalid numeric value undefined for column N2
  Error Unable to process row of table TTT.
  If I set Display As = Select List, all works fine. But I need Popup Key LOV.
  Could anybody help me?
  I use Application Express 2.2.1.00.04

  Hi all,
  I did my homework and solved this issue. First I would like to thank Patrick Wolf for the invaluable help he gives out on thread Re: Null value handling in LOVs The code presented here is just a minor edit to his code, but an essential one when dealing with Popup Key LOV items.
  Here's what I did:
  1. Create an Application Process.
  Name: RemoveNulls
  Sequence: 0
  Point: On Submit: After Page Submission - Before Computations and Validations
  Process Text:
  BEGIN
      FOR rItem IN
        ( SELECT ITEM_NAME
            FROM APEX_APPLICATION_PAGE_ITEMS
           WHERE APPLICATION_ID   = TO_NUMBER(:APP_ID)
             AND PAGE_ID          IN (TO_NUMBER(:APP_PAGE_ID), 0)
             AND LOV_DISPLAY_NULL = 'Yes'
             AND LOV_DEFINITION   IS NOT NULL
             AND LOV_NULL_VALUE   IS NULL
      LOOP
          IF (V(rItem.ITEM_NAME) = '%null' || '%' OR V(rItem.ITEM_NAME) = 'undefined')
          THEN
              Apex_Util.set_session_state(rItem.ITEM_NAME, NULL);
          END IF;
      END LOOP;
  END;Error Message: #SQLERRM#Condition: None
  2. You should be able to submit a Popup Key LOV with a NULL value now.
  Once again, THANKS, Patrick! You rock! I'm seriously thinking of trying ApexLib now :)
  Georger

• JDeveloper Extension for SINGLE CLICK deployment of OIM customizations

  I am not sure most of OIM Developers, System Integrators and Architects aware of this Oracle Asset, hence sharing information.
  In most of the questions posted on forum related to event handler usages Plugin Registration utility and weblogic scripts to import / export meta data files into MDS. There is easy way to deploy OIM 11g even handler plugins , Scheduled Tasks, Request Datasets and Notification Events using OIM Customization Installer JDeveloper Extension.
  Oracle has published Oracle Identity Manager 11g Sample Assets some time back. You can use OIM Customization Installer JDeveloper Extension for SINGLE CLICK deployment of OIM customizations like Event Handlers, Plugins, Scheduled Tasks, Request Datasets and Notification Events.
  You can access and download Oracle Asset using below link,
  http://www.oracle.com/technetwork/middleware/id-mgmt/overview/oim-11g-assets-504842.html
  Thanks,
  Pradeep.

  Pradeep,
  Thanks for sharing this. I have gone through this asset sometime back. This is quite helpful w.r.t deployment but does not have any other added advantage. For example, it does not create the xml's automatically or does not validate them etc. If I remember it right, this plugin was supported till 11.1.1.3 only.
  Appreciate you sharing this as it would surely help folks here.
  -Bikash

• [MESSAGE.GENERAL] How can take the actual error text for ABAP proxy error?

  Hi...
  I'm a ABAPer.
  I got to create outbound abap proxy for synchronous server proxy and described below.
  My problem is program can not catch the actual error message when occurred error during send data to XI.
  The return message is just 'MESSAGE.GENERAL'.
  But according to the XI part, 'Key error' is actual reason.
  So... how can i take the actual error text like 'Key error'?
  <b>* Only MESSAGE.GENERAL is return message for all kind of errors.</b>
  Thanks.
  Below----
    TRY.
        CREATE OBJECT abap_proxy.
        CALL METHOD abap_proxy->execute_synchronous
          EXPORTING
            output = gs_out
          IMPORTING
            input  = gs_in.
    Exception Handling
  <b>    CATCH cx_ai_system_fault  INTO  go_sys_exception.
        g_sys_result = go_sys_exception->get_text( ).</b>
      CATCH cx_ai_application_fault INTO go_app_exception.
        g_app_result = go_app_exception->get_text( ).
    ENDTRY.
    COMMIT WORK.
  Return status 'D' is succeeded.
    if  gs_in-sales_group_rer_sap-xstat <> 'D'. 
       WRITE:/ 'System Error Message      :', g_sys_result.
       WRITE:/ 'Application Error Message :', g_app_result.
    endif.
  *--Result--
  System Error Message      : MESSAGE.GENERAL
  Application Error Message :
  Message was edited by: Miju cho
  Message was edited by: Miju cho

  Thanks guys, this was useful.
  My scenario is for Asynchronous communication.
  I guess Fault messages are used in case of Synchronous communication for handling application errors. So if there was something wrong at the JDBC end then I could use the fault messages.
  Have i got this right?
  I also came across this piece on Acknowledgements. But is says that they can be used with the following Receivers:
  The following receivers support acknowledgments:
  ABAP and Java proxies (XI 3.0 SP1 for the latter)
  Integration processes
  IDocs (note that IDocs only return acknowledgments when they have been configured using the ALE audit)
  Receiver adapters support system acknowledgments but not application acknowledgments
  My Receiver is JDBC. So I guess I cannot use acknowledgements either.
  Hence, I need to know what I can do to replicate the system errors eg. failed server etc...so that I can get catch these errors during sending.
  I'll tell you abt what happened earlier.
  My XI server was down. I executed the code for the sender ABAP Proxy and it did not catch the error. In SXMB_MONI in the R/3 system, I could see the messages queued up. When the XI server started, the messages were transferred to XI.
  I need to handle such errors...ie. If  the server is down or message did not reach XI then my ABAP program that sends data via ABAP proxy needs to know that something went wrong.
  Thanks and Regards,
  Ashwin

• Https errors for when client authentication

  Hi all,
  I encountered the error when i configured the web server to require client authentication. Can anyone advise?
  [01/Jun/2006:15:41:08] failure (17048): HTTP3068: Error receiving request from 1
  0.60.20.126 (SSL_ERROR_NO_TRUSTED_LIBSSL_CLIENT_CA: the CA that signed the clien
  t certificate is not trusted locally)
  Regards
  Ken

  The message "the CA that signed the client certificate is not trusted locally" means that the CA that signed the client certificate (i.e. the cert that 10.60.20.126 sent to the server, here) is not trusted locally (i.e. by the web server).
  For SSL client auth the clients must have certs signed by some CA which is trusted by the web server. If the client has a cert issued by a known CA (like Verisign and others), those are trusted by default. I suspect here the client has a cert issued by some local CA. You need to import that CA's cert into the web server and mark it trusted.

• Netscape cert type does not permit use for SSL server on Weblogic

  We have WLS 11g (11.1.1.5 SOA) on UNIX and we are trying to connect secured service (Using client certificate along with UserName and Password for Authentication ). I was able to test it using SOAP UI.
  But when I am testing the webservice I am facing listed error
  java.lang.Exception: oracle.sysman.emSDK.webservices.wsdlapi.SoapTestException: oracle.fabric.common.FabricInvocationException: Unable to access the following endpoint(s): https://abcd:1111/JWSs/V1/TermsWS at oracle.sysman.emas.model.wsmgt.WSTestModel.invokeOperation(WSTestModel.java:575) at oracle.sysman.emas.view.wsmgt.WSView.invokeOperation(WSView.java:381) at
  and domain log shows that
  Caused By: javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: sun.security.validator.ValidatorException: Netscape cert type does not permit use for SSL server
  Please help me to resolve listed issue.
  Can I use Netscape client certificate on WLS?
  Do I need to take any extra care while working with client cert?
  I appreciate your help.

  Netscape cert type does not permit use for SSL clientTry using another certificate. Your certificate can't be used as a web browser client certificate.