Stack Overflow
Stack Overflow

Questions tagged [ca]

A Certification Authority(CA) is a trusted third party which asserts the identity of a remote website.

References

696 questions
4
votes
1 answer

Using custom root CA with HttpClient

In C#, when using HttpClient, how can I connect to the https server that is using either self-signed certificate (for testing) or a custom CA that is not part of the machine's trust-store? Note that I m not needing client certificates, only need…
Yevgeniy P
  • 1,480
  • 1
  • 15
  • 23
4
votes
1 answer

puppetserver ca commands fail connecting to https://puppet:8140 when using SRV record solution

I use SRV solution in my puppet architecture. When trying to setup a new puppet master and CA and view my certificates I get this error: puppetserver ca list --all Fatal error when running action 'list' Error: Failed connecting to…
deez
  • 1,472
  • 3
  • 18
  • 28
4
votes
1 answer

How to check the certificate is a CA or User certificate using mbedTLS library or openssl

I have a certificate received from client. In my server application I need to check if the received certificate is a CA or User certificate. I am currently using mbedTLS library for implementing security. There is an example already to check this…
jayx
  • 103
  • 9
4
votes
1 answer

SSL Alert number 48: Unknown CA, even with openssl verify returning OK

Hello everybody :)I'm facing an issue with ssl dual authentication on haproxy, my root and intermediate CA are concatained in once, my client certificate is OK and the openssl verify returns OK (verification of client certificate against CA) openssl…
Yass
  • 41
  • 1
  • 4
4
votes
0 answers

Android - CertificateFactory.generateCertificates(Inputstream) return 0

I am trying to load a .pem file into Inputstream and then trying to generateCertificates. But, I am getting 0 certificates. Whereas my .pem file has various certifcates. Below is the code I am using: try{ AssetManager am = mContext.getAssets(); …
Hello World
  • 239
  • 6
  • 17
4
votes
2 answers

How to create a public key store for microservices?

I implemented a set of microservices in a docker enviornment. And each of these services communicate with each other using JWT tokens. When service A calls to service B Service A, sign the token using his private key and pass to service B service…
Sameera Kumarasingha
  • 2,908
  • 3
  • 25
  • 41
4
votes
2 answers

Trust Certificate Authority in WebView loadUrl()

From a result of security scan program, I have a need to restrict the Certificate Authorities the app trusts. The scan result points out the line at webView.loadUrl("https://example.com/page");. I see how I can create a SslSocketFactory that uses my…
GreenTeaIterator
  • 41
  • 1
  • 5
4
votes
4 answers

Ordering of RDN attributes in a CA's certification sign process

I have difficulties to understand the ordering of the attributes (AttributeTypeAndValue) in the RDN (RelativeDistinguishedName). Here are the relevant ASN.1 definitions (taken from www.in2eps.com): TBSCertificate TBSCertificate ::= SEQUENCE { …
duesee
  • 141
  • 1
  • 9
4
votes
1 answer

Import self signed ssl certificate .pem to firefox

I added self signed certificate in .pem format in Firefox under Authorities tab. When I access site, Firefox throws error mozilla_pkix_error_ca_cert_used_as_end_entity It says that the certificate is not trusted because it is self signed. What…
newhorizens
  • 107
  • 1
  • 9
4
votes
1 answer

How can I create a CA root certificate with Bouncy Castle?

I need to create a X509 certificate with Bouncy Castle that serves as CA certificate. The certificate will be added manually to the trusted CA list of web browsers. It will be used to sign server certificates. How do I do this? Apart from the usual…
Gustave
  • 3,359
  • 4
  • 31
  • 64
4
votes
2 answers

FreeIPA external CA (intermediate CA)

we're doing a freeipa install using our existing CA. During the install, a CSR is generated and must be signed by the CA to create a certificate. This certificate must have X509v3 Basic Constraints: CA:TRUE I have been…
driz
  • 455
  • 3
  • 16
4
votes
0 answers

List of trusted CA certificates programmatically in Android

I know the user can view the trusted CA certificates installed on the device looking into: settings > security > trusted CA certificates. Do you if (and how) from inside my application I can get the list of CA certificates installed by the user?
user2461515
  • 339
  • 1
  • 3
  • 8
4
votes
1 answer

How to verify chain in RemoteCertificateValidationCallback?

I have the following code that attempts to verify a server certificate against the CA in my private PKI. Its used with ServicePointManager and RemoteCertificateValidationCallback: static bool VerifyServerCertificate(object sender, X509Certificate…
jww
  • 97,681
  • 90
  • 411
  • 885
3
votes
0 answers

Loading npm registry ca certs from environment to npmrc

In order to use private npm registry I am trying to setup credentials and ca certs in project's .npmrc file . like following: ca[]= # NOTE this needs to string in double quotes, with newlines replaced be \n ca[]= # NOTE…
Rahul Bhooteshwar
  • 1,675
  • 17
  • 31
3
votes
2 answers

Export Certificate as PFX with proper chain of signing

I read some posts (that don't exist anymore) and came up with the following code that generates a PFX certificate. It works fine to the part of creating this self-signed certificate. I'm trying to expand this to crate a self-signed certificate and…
SammuelMiranda
  • 420
  • 4
  • 29
1 2 3
46 47