Avatar for Username

Támogatás keresése

Kerülje el a támogatási csalásokat. Sosem kérjük arra, hogy hívjon fel egy telefonszámot vagy osszon meg személyes információkat. Jelentse a gyanús tevékenységeket a „Visszaélés bejelentése” lehetőséggel.

További tudnivalók

A témacsoportot lezárták és archiválták. Tegyen fel új kérdést, ha segítségre van szüksége.

Cannot use our self signed client certificates

  • 2 válasz
  • 1 embernek van ilyen problémája
  • 1 megtekintés
  • Utolsó üzenet ettől: Fabien H. Dumay

Fabien H. Dumay
Fabien H. Dumay
more options

In order to monitor our application at client sites, we have added a monitoring page (using apache). To prevent preying eyes, we require clients to identify them selves using a client certificate. This used to work until a few weeks ago, but now we are having problems using firefox. It keeps stating a SSL_ERROR_HANDSHAKE_FAILURE_ALERT error, and we cannot accessing the pages.

I have already added our Root CA and intermediate CA (used to sign the client certs) in both firefox and the windows certificate store, But the problem is not yet resolved.

The subdomain is protected with a an Organization Validated certficate from an official CA authority. Apparently we are missing something, but i can't see what is causing this issue.

If i disable the requirement for a client certificate, the site is accessible, but that is not really an option here.

In order to monitor our application at client sites, we have added a monitoring page (using apache). To prevent preying eyes, we require clients to identify them selves using a client certificate. This used to work until a few weeks ago, but now we are having problems using firefox. It keeps stating a SSL_ERROR_HANDSHAKE_FAILURE_ALERT error, and we cannot accessing the pages. I have already added our Root CA and intermediate CA (used to sign the client certs) in both firefox and the windows certificate store, But the problem is not yet resolved. The subdomain is protected with a an Organization Validated certficate from an official CA authority. Apparently we are missing something, but i can't see what is causing this issue. If i disable the requirement for a client certificate, the site is accessible, but that is not really an option here.

Összes válasz (2)

Roland Tanglao
Roland Tanglao
  • Moderator
more options

Hi Fabien:

Do you follow the instructions in the followin article to enable Windows certificate store?

Please let us know.

Cheers! ...Roland

Fabien H. Dumay
Fabien H. Dumay Kérdés tulajdonosa
more options

Hi Roland,

Thanks for responding to my query. I have tried that solution (both 'on' and 'off') but that did not change the outcome.

Regards,

Fabien H. Dumay