Related
gtrak: How to manually check certificate revocation status in Java using OCSP, considering only the client's java.security.cert.X509Certificate? I can't see a clear way to do it. Alternatively, I can have tomcat do this for me automatically, how do you know yo
Filip Eriksson: I need to use Go as a client to do an OCSP revocation check on the server certificate before completing the TLS handshake, i.e. [start handshake -> get server certificate -> check revocation status -> if revocation aborted], not [start handshak
lipoprotein: I have used SecKeyGeneratePairfunctions to generate private and public keys for a Swift based iOS app . I then generated a "Certificate Signing Request" using the iOS CSR and my server replied with a certificate chain in PEM format. I use the foll
User1791139: My use case looks like I know the client's public certificate and just want to allow them. I have a go server configured based on gin and TLS where a method has been assigned to the property "VerifyPeerCertificate". The function looks like func cu
Jabalaski I'm having trouble setting up Apache 2.4.29 on Windows to use a valid OCSP responder for client authentication. Client authentication works fine when the OCSP responder is down. I'm also able to verify that my client certificate status is "good" when
gtrak: How to manually check certificate revocation status in Java using OCSP, considering only the client's java.security.cert.X509Certificate? I can't see a clear way to do it. Alternatively, I can have tomcat do this for me automatically, how do you know yo
Filip Eriksson: I need to use Go as a client to do an OCSP revocation check on the server certificate before completing the TLS handshake, i.e. [start handshake -> get server certificate -> check revocation status -> if revocation aborted], not [start handshak
Cratylus: Can someone help me with the following? RFC2560 defines when an OCSP responder certificate can be accepted (from the response): 1. Matches a local configuration of OCSP signing authority for the
certificate in question; or
2. Is the certifi
User1791139: My use case looks like I know the client's public certificate and just want to allow them. I have a go server configured based on gin and TLS where a method has been assigned to the property "VerifyPeerCertificate". The function looks like func cu
lipoprotein: I have used SecKeyGeneratePairfunctions to generate private and public keys for a Swift based iOS app . I then generated a "Certificate Signing Request" using the iOS CSR and my server replied with a certificate chain in PEM format. I use the foll
ericOnline How to make simple request for certificate revocation status to EJBCA OSCP responder using Python requests library ? example: # Determine if certificate has been revoked
ocsp_url = req_cert.extensions[2].value[0].access_location.value
ocsp_
T·Sh I'm using the c# .Net framework to connect to an HTTPS service and would like to know how Windows checks for certificate revocation. I googled for hours and found that Windows supports OCSP and CRL. But the question is which one is used exactly? Is there
Jabalaski I'm having trouble setting up Apache 2.4.29 on Windows to use a valid OCSP responder for client authentication. Client authentication works fine when the OCSP responder is down. I'm also able to verify that my client certificate status is "good" when
T·Sh I'm using the c# .Net framework to connect to an HTTPS service and would like to know how Windows checks for certificate revocation. I googled for hours and found that Windows supports OCSP and CRL. But the question is which one is used exactly? Is there
user 93353 The web server has settings for requesting client certificates - eg. SSLVerifyClient requireIn Apache, use other settings in IIS etc. If this setting is set, the browser will pop up a dialog asking you to select a certificate. Is it possible to requ
ericOnline How to make simple request for certificate revocation status to EJBCA OSCP responder using Python requests library ? example: # Determine if certificate has been revoked
ocsp_url = req_cert.extensions[2].value[0].access_location.value
ocsp_
Anthony B Code I've been searching for weeks and can't seem to find an answer anywhere. I am trying to do the following for Android. The code is from a C# app I wrote but am porting it to Android. Web endpoints require certificates to be attached to mutual aut
Anthony B Code I've been searching for weeks and can't seem to find an answer anywhere. I am trying to do the following for Android. The code is from a C# app I wrote but am porting it to Android. Web endpoints require certificates to be attached to mutual aut
ericOnline How to make simple request for certificate revocation status to EJBCA OSCP responder using Python requests library ? example: # Determine if certificate has been revoked
ocsp_url = req_cert.extensions[2].value[0].access_location.value
ocsp_
simple man What are OCSP signing certificates and keys? Who should issue it? So if I have this: Example Root Certification Authority Example Intermediate Certificate Authorities *.example.com (any domain) I only set up OCSP for domain certificates, so the OCSP
Cratylus: Can someone help me with the following? RFC2560 defines when an OCSP responder certificate can be accepted (from the response): 1. Matches a local configuration of OCSP signing authority for the
certificate in question; or
2. Is the certifi
Filip Eriksson: I need to use Go as a client to do an OCSP revocation check on the server certificate before completing the TLS handshake, i.e. [start handshake -> get server certificate -> check revocation status -> if revocation aborted], not [start handshak
User1791139: My use case looks like I know the client's public certificate and just want to allow them. I have a go server configured based on gin and TLS where a method has been assigned to the property "VerifyPeerCertificate". The function looks like func cu
lipoprotein: I have used SecKeyGeneratePairfunctions to generate private and public keys for a Swift based iOS app . I then generated a "Certificate Signing Request" using the iOS CSR and my server replied with a certificate chain in PEM format. I use the foll
ericOnline How to make simple request for certificate revocation status to EJBCA OSCP responder using Python requests library ? example: # Determine if certificate has been revoked
ocsp_url = req_cert.extensions[2].value[0].access_location.value
ocsp_
Jabalaski I'm having trouble setting up Apache 2.4.29 on Windows to use a valid OCSP responder for client authentication. Client authentication works fine when the OCSP responder is down. I'm also able to verify that my client certificate status is "good" when
ericOnline How to make simple request for certificate revocation status to EJBCA OSCP responder using Python requests library ? example: # Determine if certificate has been revoked
ocsp_url = req_cert.extensions[2].value[0].access_location.value
ocsp_
ericOnline How to make simple request for certificate revocation status to EJBCA OSCP responder using Python requests library ? example: # Determine if certificate has been revoked
ocsp_url = req_cert.extensions[2].value[0].access_location.value
ocsp_
user 93353 The web server has settings for requesting client certificates - eg. SSLVerifyClient requireIn Apache, use other settings in IIS etc. If this setting is set, the browser will pop up a dialog asking you to select a certificate. Is it possible to requ