Tagged Questions
7
votes
1answer
770 views
Two-way authentication using ssl in dotnet
I have a project where I need to send a datafile through a web request. We need to setup Two-way authentication also known as mutual authentication. We are not sure if we need a special cert or not ...
5
votes
3answers
5k views
NGinx SSL certificate authentication signed by intermediate CA (chain)
I am trying to enable client certificate authentication in nginx where the certificates have been signed by an intermediate CA. I am able to get this working fine when using a certificate signed by a ...
5
votes
1answer
340 views
How to force SSL renegotiation on apache for a test
I have a bug on an application about uploading file on a website wich use x509 client certificate : when a renegotiation occurs during an upload, as the cache is small (128kb), the upload fail.
I ...
5
votes
1answer
722 views
SSL and authentication across multiple domains
I am building an app with Ruby on Rails which allows users to sign up and create their own subdomain:
joebloggs.myapp.com
So at the very least I need a wildcard SSL certificate to handle when users ...
4
votes
4answers
377 views
SSL advantages worth the hassle?
Currently using a Godaddy SSL on http://www.spothero.com
On a friend's iphone it said "cannot verify server identity"
Two people I know cannot access it from their blackberrys and server identity ...
4
votes
2answers
1k views
SSL Authentication with Certificates: Should the Certificates have a hostname?
Quick Version of Question
Gmail, TD (Canadian Bank), Royal Bank (Canadian Bank) all use ssl. When you inspect their certificates they all have
Common Name (CN) mail.google.com
Or more ...
4
votes
1answer
838 views
SSL Client Cert Verification optimisation
We currently have a group of web-services exposing interfaces to a variety of different client types and roles.
Background:
Authentication is handled through SSL Client Certificate Verification. ...
4
votes
2answers
804 views
How to create a dual-authentication HTTPS client in Python without (L)GPL libs?
Both the client and the server are internal, each has a certificate signed by the internal CA and the CA certificate. I need the client to authenticate the server's certificate against the CA ...
2
votes
2answers
339 views
What are the best practices to map a client certificate to an user account?
We have a proprietary framework and now we want to integrate the authentication by client side ssl certificates.
What are the best practices to map a client certificate to a proprietary user account ...
2
votes
0answers
60 views
Using SSL from a CA for server + allowing ssl client authorization that is self-signed with Node.js
First time working with SSL client authentication. The way it works with node.js while mixing with a certificate issued by a third-party CA (in this case it is StartSSL) is confusing me.
On ...
1
vote
1answer
998 views
Java EE Certificate-Based Mutual Authentication
I'm trying to setup “Certificate-Based Mutual Authentication” in my Java EE application. My requirement outline as follows,
Deploying a web application (Java EE on IBM Webshpere) which is pulicly ...
1
vote
2answers
3k views
Client SSL authentication causing 403.7 error from IIS
I'm trying to connect to a web service (not under my control) configured to authenticate users via SSL client certs. I have a valid certificate in PKCS12 format containing the client certificate and ...
1
vote
0answers
49 views
SSL certificates authentification at ASP.NET. Force IE ask certificate after user press cancel
I'm creating SSL authentification using ASP.NET. What users launches the site we see a window for certificates selection (IIS configured to accept user certificates). It look like this.
We have 2 ...
1
vote
0answers
206 views
nginx ssl client certificates with signed root and intermediate
I am trying to set up ssl client authentication. I am using startssl as a CA if that makes any difference. I obtained a root certificate, an intermediate certificate, and a client certificate from ...
1
vote
2answers
917 views
Certificate authentication with a self-signed certificate
I have a client application (windows service) which sends a request (WebClient.UploadString()) to a web service. I've created a certificate through IIS. This I attach to the WebClient before sending ...
Related Tags
ssl × 12apache × 4
certificate × 3
nginx × 2
web-services × 2
certificate-authority × 2
c# × 2
webclient × 2
wcf × 2
https × 2
security × 2
two-way
vb.net
alfresco
user-accounts
websphere
java-ee
android asp.net
ssl-security
ruby-on-rails
python
iis7
mobile-devices
web-security
