DSID-0C090334

Working with our clients on LDAP configuration almost invariable starts with SSL certificates. Self-signed, intermediate, and take up a while. The two tools, openSSL and keytool have become my friends. Working with a network admin for the client, I¬†finally saw the legitimate certificate correctly signed by the intermediate certificate not the self-signed. This means I… Continue reading DSID-0C090334

OpenSSL Handshake

One of the questions we ask our clients initiating an engagement to help them setup external authentication from our LMS to their server is, “What is the certificate¬†authority for your SSL certificate?” We have been burned by people purchasing certificates from authorities Java does not support. (And the support is indeed limited compared to say,… Continue reading OpenSSL Handshake