IT Answers » Digital certificates

Certificate not signed by trusted authority

WoodEngineer — Fri, 24 Sep 2010 23:39:37 +0000

We have been been communicating with Twitter from our iSeries. Recently Twitter increased their security and now required a digital certificate. We followed all the setup instructions but get this error on the green screen.

gsk_secure_soc_init() failed with rc = 6000 and errno = 0. 8 rc of 6000 means Certificate is not signed by a trusted certificate authority.

The certificat we created is linked to the local certificate authority delivered with our iSeries.

What is required to establish the trusted certificate authority?

Any help would be greatly appreciated.

Validation error importing a digital certificate using DCM

Rhoover — Wed, 07 Oct 2009 16:09:44 +0000

While importing a CA digital certificate into the *SYSTEM store using DCM, we received the following error: “An error occurred during certificate validation. The issuer of the certificate may not be in the certificate store or the issuer may not be enabled.” How do we add an issuer to the certificate store?

Blank choose a digital certificate box popping up

Robertgreeson — Sat, 27 Jun 2009 03:53:39 +0000

I recently installed a 3rd party digital certificate to exchange OWA and IIS. Now when I go to the OWA website a box pops up in the middle of the screen that says “Choose a digital certificate” with nothing in the box. How can I fix IIS so that this box doesn’t pop any more.

Digital document signatures for an enterprise

Labnuke99 — Thu, 11 Jun 2009 14:08:38 +0000

Does anyone have a good enterprise solution for digital document signatures using Microsoft PKI/CA? I am looking for something that provides a good indication that a document has been digitally signed using a user-certificate generated by Microsoft AD CA (Server 2003). I have tried it in Word 2003 but a Word 2007 user could not see that the document was signed. The signature works fine using Outlook 2007 and the message shows the little ribbon badge showing it is signed.

I am also interested in enterprise alternatives to using Acrobat Pro to sign PDF files.

Do I need digital certificates to be sox compliant?

Mhoddenbagh — Mon, 08 Jun 2009 15:13:02 +0000

Dear LS,

I´d like to understand to which extend I need digital certificates (PKI) in order to be in compliance with current most important regulations including sox, but also other relevant regulations that might be applicable. This includes topics like WIFI within an Enterprise on a Global scale or secure email or when I use a smart card as log in methode.

Thanks for your help in advance.

Configure SSL on Apache 2.0 (Windows 2003)

PaulHobbs — Tue, 07 Apr 2009 03:15:53 +0000

I provide an application hosting service, and most of my clients require SSL. In most cases I generate the CSR on the server (which I host), I send the CSR to the customer and they get a certificate issued by a CA, and everything works nicely. For testing, I generate a self-signed certificate, and this also works nicely (albeit, with the usual warning from the browser that the certificate is not signed).

But I have new client that doesn’t use a CA – they generate the certificate themselves. I have implemented the certificate (eg: uat.mycustomer.com.cer), but when I browse to https://uat.mycustomer.com, I get the normal warning about the certificate being unsigned. When I check the certificate, it is issued by internal.mycustomer.com.

I informed my customer about the problem, so they sent me an additional certificate – the root authority (internal.mycustomer.com.cer). But I have no idea what to do with this.

How do I implement this additional certificate?

Certificate enrollment failed – says RPC server unavailable

Tis — Thu, 02 Apr 2009 06:54:11 +0000

I checked my logs in windows 2003 R2 and received the following error:

certificate enrollment for local system failed to enroll for one Domain Controller certificate from (SERVER NAME). (RPC server unavailable 0×800706ba (win32: 1722))

windows password question

Minxcomp1 — Tue, 17 Jul 2007 00:09:16 +0000

I recently purchased a computer from a “going out of business” sale for my fathers business and when I try to logon to Windows I get the logon screen with domain. I have a valid username and password but obviously i am not connected to a domain. I need to bypass this if possible. The safe mode trick that I see all over did not work. Please help as our business is suffering!!!

Selecting an area within security to start

Secmax — Sun, 24 Jun 2007 16:06:15 +0000

Hi,
I’m studying for an MSc in Information Security from Royal Holloway University of London, I have a B.Engg. degree in computers and a PG Diploma in Networking and Communication as well as the CCSA and CCNA. I’m also studying for the CISSP.

Now, with all these qualifications, could you please tell me which would be the best position for me to apply for in order to get a start, and if I try that position what would my options be when I gain some experience.

Thank you!!

Remote users with VPN client slow access times

Dimchik — Mon, 18 Jun 2007 12:23:55 +0000

I have couple of remote users with VPN clients. From time to time when they are not connected to main site they report that it takes long time to open documents on local machines. Their laptops are attached to domain; I enable logon cache in for 50 logons, via policy. Am I missing anything else? It seems like their laptops trying to find dc that?s why it takes long times. Any suggestions or help.
Thaks