There are a couple ways to do this. First, instead of going into openssl command prompt mode, just enter everything on one command line from the Windows prompt: E:\> openssl x509 -pubkey -noout -in cert.pem > pubkey.pem If for some reason, you have to use the openssl command prompt, just enter everything up to the … Read more
Try Add Exception: FireFox -> Tools -> Advanced -> View Certificates -> Servers -> Add Exception.
As of 2020, RSA keys should be 2048 bits. 1024 bits 1024 bits RSA certificates are obsolete and not accepted by browsers. Firefox stopped accepting 1024 bits RSA certificates in 2014. Certificate authorities stopped delivering 1024 bits RSA certificates in 2014 or before. See GlobalSign or Comodo notice. 1024 bits keys were deprecated because they … Read more
If the keystore is PKCS12 type (.pfx) you have to specify it with -storetype PKCS12 (line breaks added for readability): keytool -list -v -keystore <path to keystore.pfx> \ -storepass <password> \ -storetype PKCS12
jww is right — you’re referencing the wrong intermediate certificate. As you have been issued with a SHA256 certificate, you will need the SHA256 intermediate. You can grab it from here: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
psql below 9.2 does not accept this URL-like syntax for options. The use of SSL can be driven by the sslmode=value option on the command line or the PGSSLMODE environment variable, but the default being prefer, SSL connections will be tried first automatically without specifying anything. Example with a conninfo string (updated for psql 8.4) … Read more
@Bean public RestTemplate restTemplate() throws KeyStoreException, NoSuchAlgorithmException, KeyManagementException { TrustStrategy acceptingTrustStrategy = (X509Certificate[] chain, String authType) -> true; SSLContext sslContext = org.apache.http.ssl.SSLContexts.custom() .loadTrustMaterial(null, acceptingTrustStrategy) .build(); SSLConnectionSocketFactory csf = new SSLConnectionSocketFactory(sslContext); CloseableHttpClient httpClient = HttpClients.custom() .setSSLSocketFactory(csf) .build(); HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory(); requestFactory.setHttpClient(httpClient); RestTemplate restTemplate = new RestTemplate(requestFactory); return restTemplate; }
from IIS.NET: The key difference between Web Hosting store and Personal store is that Web Hosting store is designed to scale to higher numbers of certificates. For lightweight scenarios (when you have less than 20-30 certificates) you can use any, Personal or WebHosting store. When you have 30+ different certificates, you should use Web Hosting … Read more
Angular CLI 6+ I’ve updated my own projects so I figured I can now update this answer too. You’ll now put the path to your key and certificate in your angular.json file as follows: { “$schema”: “./node_modules/@angular/cli/lib/config/schema.json”, “projects”: { “<PROJECT-NAME>”: { “architect”: { “serve: { “options”: { “sslKey”: “<relative path from angular.json>/server.key”, “sslCert”: “<relative path … Read more