OpenSSL and OCS and Windows 2003 CA
- From: BoNes <eoinmoon@xxxxxxxxx>
- Date: Tue, 13 Nov 2007 03:45:18 -0800
I am trying to enable TLS connectivity between my application which
uses a 3rd party app which requires OpenSSL to Office Communicator
Server (OCS).
I suppose the applications on the platforms do not matter at this
stage- I have a CA on my Domain Controller and the OCS server uses
this when it applies its certificates when being configured.
So on my application/platform I issued a certificate from the same CA
(tried exporting, creating,etc,etc all methods) , converted the PFX to
PEM format for OpenSSL using the "openssl pkcs12 -in X:\dir\certA.pfx -
out X:\dir\certA.pem -nodes" to do this.
I apply this certificate to the machine with my application, it is
read in and loaded and added to the trusted CA via the 3rd party API's
fine.
When I try and enable TLS I get handshaking (Server/Client Hello sent)
but it then suddenly terminates. The error I am getting is on my
applications server and not the OCS machine. The logs (Wireshark /OCS
logger) tell me
"The peer certificate does not contain a matching FQDN"
I have tried all I know in creating these certificates but no joy same
error every time.
I have tried:
Exporting the actual certificate from OCS
A new certificate from the same CA
Reused the same certificate
Is the conversion incorrect perhaps, any ideas/suggestions would be
gratefully appreciated
Regards
.
- Prev by Date: Re: PKI - Certificate expiration notifications
- Next by Date: Re: Security Toolbar 7.1
- Previous by thread: Re: AntiVerGear - How to remove
- Next by thread: Re: OpenSSL and OCS and Windows 2003 CA
- Index(es):
Relevant Pages
|
|
