tag:blogger.com,1999:blog-1482776199578137808.post8388020259286226610..comments2024-03-12T11:12:59.606+02:00Comments on Yaron Naveh's Web Services 2.0 Blog: X.509 interoperability & SubjectKeyIdentifierYaron Naveh (MVP)http://www.blogger.com/profile/11793800386245798442noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-1482776199578137808.post-4843982981805434672011-05-03T20:31:36.199+03:002011-05-03T20:31:36.199+03:00http://travisspencer.com/blog/2009/10/exporting-ke...http://travisspencer.com/blog/2009/10/exporting-keys-from-a-jks-and.htmlYaron Naveh (MVP)https://www.blogger.com/profile/11793800386245798442noreply@blogger.comtag:blogger.com,1999:blog-1482776199578137808.post-42769193628176597062011-05-03T20:05:08.512+03:002011-05-03T20:05:08.512+03:00I have already done it, and they are different. Bu...I have already done it, and they are different. But they are the same certificates they have the same information, how do you recommend create a certificate from a java keystore?Hernanhttps://www.blogger.com/profile/07484392309520029543noreply@blogger.comtag:blogger.com,1999:blog-1482776199578137808.post-40529459181980157462011-05-03T02:21:04.924+03:002011-05-03T02:21:04.924+03:00Hernan
Compare the WCF request to the working jav...Hernan<br /><br />Compare the WCF request to the working java client request.<br /><br />Most probably your WCF and java clients use different certificates.Yaron Naveh (MVP)https://www.blogger.com/profile/11793800386245798442noreply@blogger.comtag:blogger.com,1999:blog-1482776199578137808.post-52246859152860604432011-05-03T02:11:52.602+03:002011-05-03T02:11:52.602+03:00What does this error mean??
"The key identif...What does this error mean??<br /><br />"The key identifier iqOqsSjOoZyoO923bRNF8IeN/wU= retrieved from the message is different from the key identifier vmFljXX4Bpp4awaZeM3pL9nPf3s= acquired from the keystore Path: C:\Datos Hernan\ESB\Test\SG247758\Chapter6\ITSO7758\receiver.jks."<br /><br />I have already tested those keys with a java client and they are ok. What should i do?? pls help me!!!Hernanhttps://www.blogger.com/profile/07484392309520029543noreply@blogger.comtag:blogger.com,1999:blog-1482776199578137808.post-17611706084882078212009-06-17T17:52:06.198+03:002009-06-17T17:52:06.198+03:00Hi Anonymous
I actually meant that the client mes...Hi Anonymous<br /><br />I actually meant that the client message needs to reference the certificate, not the code. The samples followed.<br /><br />As for your problem, you need to compare the soap message you send to the a valid soap message the vendor can provide or a valid message you can generate from a different framework (e.g. the same one the server uses).<br /><br />Chances are you will find a lot of differences in versions and formats and need to handle them. The exact instructions really depend in the protection requirements and the framework you use. Also if WS-Policy is used in the WSDL it is easier. If you're lucky the only difference will be in the SKI in which case the solution depends in the frameworks used in the client and the server.<br /><br />A paypal tip jar is a good idea, I've just added it...Yaron Naveh (MVP)https://www.blogger.com/profile/11793800386245798442noreply@blogger.comtag:blogger.com,1999:blog-1482776199578137808.post-10106435321514771802009-06-17T03:58:53.798+03:002009-06-17T03:58:53.798+03:00When you say "A client that uses a server cer...When you say "A client that uses a server certificate in order to encrypt a message needs to reference this certificate in code.", what do you mean? Do you have an example?<br /><br />I have a server certificate from a company that does not have a "Subject Key Identifier" in the certificate, and I'm getting the following error: "WSS1852: KeyIdentifier value cannot be empty. Possible cause, certificate version being used does not support SubjectKeyIdentifier."<br /><br />Is there a way to as the "Subject Key Identifier"? Or perhaps a workaround?<br /><br />Love your series of blogs, by the way! I've learned a lot... need to add a paypal tip jar.Anonymousnoreply@blogger.com