This content has been marked as final.
Show 6 replies
-
1. Re: Verisign Intermediary certificate expired
didi1976 Jan 13, 2004 8:29 AM (in response to birwin)"Didi1976" wrote:
Hi,
I had the same problem.
You need to import your server certificate again. Just replacing the intermediate certificate does not do the job. The keytool seems to add an copy of the certificate chain to the server certificate at the moment you import your server certificate.
Regards,
Dietmar -
2. Re: Verisign Intermediary certificate expired
birwin Jan 13, 2004 11:29 AM (in response to birwin)"birwin" wrote:
I reinstalled the ssl certificate, but to no avail. I was wondering if I am replacing the correct certificate in my cacerts file. The certificate I am deleting and then importing is the verisignclass3ca certificate. -
3. Re: Verisign Intermediary certificate expired
birwin Jan 13, 2004 12:02 PM (in response to birwin)"birwin" wrote:
Update. I tried the connection without JBoss in the mix (using Tomcat only) and I am now getting an error stating no cipher suites in common. I assume this means I have imported a key in a format that my clients are unfamiliar with... -
4. Re: Verisign Intermediary certificate expired
didi1976 Jan 14, 2004 5:57 AM (in response to birwin)"Didi1976" wrote:
Hi,
I can tell you what I did to get it working:
1. Opened the web page using MSIE (confirm that the intermediate cert has expired) and export the Certificate of my server into a a file (because I did not find the cert which was sent to me by Verisign at the time of my CSR)
2. Imported the new intermediate cert into a keystore which only contained my private key (I had a backup from a long time ago, where I created that keystore, no certs were imported at that time)
3. Imported the previously exported server certificate into the keystore
Thats it.
Hope that helps,
Dietmar -
5. Re: Verisign Intermediary certificate expired
didi1976 Jan 14, 2004 8:23 AM (in response to birwin)"Didi1976" wrote:
What I did forget to write:
Which JDK do you use? Have a look at the SUN-Info:
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57436
You do not have to replace the root certificate as you stated, you need to replace the intermediate certificate. You can download it at:
https://www.verisign.com/support/site/caReplacement.html -
6. Re: Verisign Intermediary certificate expired
birwin Jan 14, 2004 1:01 PM (in response to birwin)I was trying to remove the old certificate and the key was being removed from the keystore also. Once I left the key in the keystore and imported the certificate all was well. Thanks for your help.