I'm trying to import the public key of a secure site (https)
I want to get to via CFHTTP. But, I'm having a lot of difficulty
getting this to work. Our CF8 server is on a Unix box (SunOS 5.10).
From my Windows XP workstation, I went to the site with IE and
retrieved the public key in DER Binary Format and saved it to a
*.cer file on the CF server (via Samba share). I then used the
keytool to import it into the keystore at
/{jrun_root}/jre/lib/security/cacerts. I verified that it was in
there with thekeytool -list -keystore cacerts command. I then went into
the /{jrun_root}/servers/cfusion/SERVER-INF/jrun.xml file and
uncommented the jrun.servlet.http.SSLService section and pointed
the keyStore and trustStore attributes to the cacerts key store. I
restarted CF and received a host of errors all saying:
error No available certificate or key corresponds to the SSL cipher suites which are enabled.
Can anyone lend some guidance here? Could it be that the DER file I'm using originated from a windows box?
error No available certificate or key corresponds to the SSL cipher suites which are enabled.
Can anyone lend some guidance here? Could it be that the DER file I'm using originated from a windows box?