How to install new certificate in HPUX client store?

 
Thread Tools Search this Thread
Top Forums UNIX for Beginners Questions & Answers How to install new certificate in HPUX client store?
# 1  
Old 04-27-2017
How to install new certificate in HPUX client store?

We have a HPUX server that talks to a web service. We recently updated the web service certificate to a new SHA256 cert that has an updated intermediate cert. The HPUX server is now unable to connect because it cannot validate the cert chain due to it not having the new intermediate CA cert.

I tried importing it to /opt/java1.5/jre/lib/security/cacerts which is successful but the system doesn't read from there apparently.

I tried copying the .pem format to /opt/openssl/certs and that did not work either.

Any suggestions? I have a case open with HP and so far they don't have answer after 3 weeks. I can't imagine this is a difficult task?
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. AIX

Install VIOS SSL Certificate on Integrated Virtualization Manager

Anyone have any procedures or tutorials on how to change the self-signed certificate on the IBM AIX VIOS Intergrated Virtulization Manager web site? I've googled till my fingers broke and most links take me to generic replacements for IBM products that I don't have. Any help is appreciated.... (3 Replies)
Discussion started by: JAY2068
3 Replies

2. Programming

Python- Client and server certificate validation

Hello Team, I have to verify the Client server certificate validation in HTTPS request(SSL hand shake before the actual HTTPS post request), And tried various ways and failed to verify it successfully. here are the trials and errors, resp = requests.post(url, req, verify=True, timeout=5,... (0 Replies)
Discussion started by: chandana.hs
0 Replies

3. UNIX for Advanced & Expert Users

Does vsftpd support user access with client certificate with priv/pub key + vsftpd certificate?

:rolleyes:I am trying to setup all certificate based client-server environment in Linux using vsftpd and curl with openssl. I would like to make a user access with vsftpd certificate and user own client certificate (self-signed) with private/public key. I don't see google posts about the my plan... (4 Replies)
Discussion started by: gogogo
4 Replies

4. HP-UX

HPUX 11.11 NFS client hang

Hi. I'm having problems with my HP C8000 and 11.11 (ifs client needs to be restarted every week), trying to get it worked out. When I searched the web it seems, I require the following patches: PHKL_41041, PHKL_43823, PHKL_43577 Is there anyway to get hold of these packages? Many thanks... (2 Replies)
Discussion started by: plantage
2 Replies

5. UNIX for Dummies Questions & Answers

Sign Soap Message from client certificate from UNIX

I have to call a webservice , I need to pass the static request from Unix which should have message signing details in the soap header . I am using cURL command for this. I do not have java , I need to do it through Unix only . Below is the kind of Soap envelop I want to wrap around my request .... (0 Replies)
Discussion started by: IshuGupta
0 Replies

6. UNIX for Dummies Questions & Answers

Calling a webservice and pass a client certificate

Hi, I am trying to call a http soap webservice using curl command , I have tried the below option but I am getting a failure . curl -H "Content-Type: text/xml; charset=utf-8" -H SOAPAction:" -d @Request.xml -X POST... (1 Reply)
Discussion started by: IshuGupta
1 Replies

7. Red Hat

How to Install the CA Certificate on Red Hat

Hi Guys, These days, I am busy in configuring OpenLDAP. I plan to enable security. I don't know how to install CA Certificate on Red Hat Linux OS (Red Hat Enterprise Linux Server release 5.3). Could you please help me out of this trouble? ---------- Post updated at 06:45 PM ----------... (1 Reply)
Discussion started by: crest.boy
1 Replies

8. UNIX for Dummies Questions & Answers

install new certificate(s) in a unix cluster - is restart needed?

Dear All.......... if anyone can help me with a problem i'm facing :(.......i will be really grateful!!!:) If i install a new certificate in a cluster (2 machines) should it be restarted the whole cluster? A separate restart per server is it enough? My main query is if a restart is needed? ... (4 Replies)
Discussion started by: unbalanced
4 Replies

9. UNIX for Advanced & Expert Users

mod_ssl redirect to site if client does not have valid certificate

Hello! I have setup a site to which users authenticate against with openssl certificates. Everything works just fine, be I wish to be able to redirect to a error page with instructions instead of displaying the default error page that firefox displays. How to? I got nothing out of google...... (6 Replies)
Discussion started by: Esaia
6 Replies

10. HP-UX

Problem with HPUX as NIS-Client

Hi all! I am running an NIS Server with Linux. Now I want to configure a HPUX-Server to use this NIS Server. I have don all the configuration stuff exactly as described in the documentation. When I run YPWHICH, it shows me the right server and domain. If I run YPCAT passwd, I'll get the... (4 Replies)
Discussion started by: pepade
4 Replies
Login or Register to Ask a Question
NE_SSL_CERT_IDENTITY(3) 					neon API reference					   NE_SSL_CERT_IDENTITY(3)

NAME
ne_ssl_cert_identity, ne_ssl_cert_signedby, ne_ssl_cert_issuer, ne_ssl_cert_subject - functions to access certificate properties SYNOPSIS
#include <ne_ssl.h> const char *ne_ssl_cert_identity(const ne_ssl_certificate *cert); const ne_ssl_certificate *ne_ssl_cert_signedby(const ne_ssl_certificate *cert); const ne_ssl_dname *ne_ssl_cert_subject(const ne_ssl_certificate *cert); const ne_ssl_dname *ne_ssl_cert_issuer(const ne_ssl_certificate *cert); DESCRIPTION
The function ne_ssl_cert_identity retrieves the "identity" of a certificate; for an SSL server certificate, this will be the hostname for which the certificate was issued. In PKI parlance, the identity is the common name attribute of the distinguished name of the certificate subject. The functions ne_ssl_cert_subject and ne_ssl_cert_issuer can be used to access the objects representing the distinguished name of the subject and of the issuer of a certificate, respectively. If a certificate object is part of a certificate chain, then ne_ssl_cert_signedby can be used to find the certificate which signed a particular certificate. For a self-signed certificate or a certificate for which the full chain is not available, this function will return NULL. RETURN VALUE
ne_ssl_cert_issuer and ne_ssl_cert_subject are guaranteed to never return NULL. ne_ssl_cert_identity may return NULL if the certificate has no specific "identity". ne_ssl_cert_signedby may return NULL as covered above. EXAMPLES
The following function could be used to display information about a given certificate: void dump_cert(const ne_ssl_certificate *cert) { const char *id = ne_ssl_cert_identity(cert); char *dn; if (id) printf("Certificate was issued for '%s'. ", id); dn = ne_ssl_readable_dname(ne_ssl_cert_subject(cert)); printf("Subject: %s ", dn); free(dn); dn = ne_ssl_readable_dname(ne_ssl_cert_issuer(cert)); printf("Issuer: %s ", dn); free(dn); } SEE ALSO
ne_ssl_cert_cmp, ne_ssl_readable_dname AUTHOR
Joe Orton <neon@lists.manyfish.co.uk> Author. COPYRIGHT
neon 0.28.4 25 February 2009 NE_SSL_CERT_IDENTITY(3)