I have been told to notice this rule as follow:
"Before using the HTTPS protection feature in Alibaba Cloud WAF, you
must upload the server certificate and private key beforehand."
Does anyone know where I can find this? At Alibaba website or someplace?
Check out the "Procedure" on the following link, it describes how to authenticate and configure HTTPS certificates:
https://www.alibabacloud.com/help/doc-detail/27118.htm
Related
Laravel application deployed on Kubernetes and making requests to https://maps.google.com/maps/api/geocode/json failing with:
SSL routines:tls_process_server_certificate:certificate verify failed
The same application works when running on Docker.
I have appended Google's Root CA certs from here https://developers.google.com/maps/root-ca-faq#what_is_happening to the server's trust store but no luck there either.
I can disable verification but that's not the correct approach.
Any ideas would be much appreciated.
Thanks.
According to the OP, the solution was:
The issue was that our security team scans external certificates and
re-package them with the company's own cert. Once I added the
company's cert to the trust store, everything worked fine. It seems
it's only an internal issue.
I'm trying to use Google Cloud to generate an http certification, following this guide: https://certbot-dns-google.readthedocs.io/en/stable/
I have my domain via Google Domains, and I also use GSuite. I made a Google Cloud account (free), and I'm not sure how to tell it about my domain.
What's the best way forward, so I can get the cert for my domain? Thanks!
You don't necessarily need to use Google Cloud in order to create a certificate from "Let's Encrypt" but here's how I would do it.
Assuming the Google Domains domain name is certme.com, I would create a GCP Cloud DNS public zone using certme.com link, then you must create a GCP service account link (this will be used by your certbot later) remember to use the credential types described on your guide and download it's credentials to the cerbot running machine.
After that then you should be able to run the following (described on your guide):
certbot certonly \
--dns-google \
--dns-google-credentials /path/to/credentials.json \
--dns-google-propagation-seconds 120 \
-d certme.com
Remember that under the hood, you would be using cerbot challenge "dns-01", for this to work a DNS TXT record must be added and validated (by cerbot).
I was able to configure Gravitee API Gateway, Management and UI successfully and I successfully created sample API's which were tested in postman. Now I need to enable SSL for all the three Gravitee services running on ports Management-UI - 8000, API-gateway - 8092 and Management - 8093. Can some one help me to configure wild card domain certificate for all of these services?
This is the only official documentation which i see about ssl configuration for gravitee:
https://docs.gravitee.io/am/2.x/am_installguide_configuration.html
Any help is much appreciated, I have certificates in PKCS12/PEM formats.
FYI, DNS mapping is configured for the server.
I eventually figured it out. The solution was to generate a keystore and truststore for my domain certificate and then add the certificate to gravitee.yml configuration file for both gateway and management-api. update the paths in management ui - constant.json file and restart the services.
Hope this helps some one.
I am using spring-ws-core 2.2.3.RELEASE, one of our client shared ".p12" certificate to hit their service.I know how to hit the webservice using "jks" but i never used ".p12" could anyone already achieved this ?
"WebServiceTemplate" really accept ".p12"?
Do we need to publish the ".p12" into java keystore?
Please someone guide me to achieve this.Your help should be appreciated.
This question already has answers here:
Swisscom Cloud SSL certificate
(3 answers)
Closed 6 years ago.
The Swisscom documentation on Routes and Domains acknowledges that
If you use domain forwarding, SSL requests to the root domain may fail if the SSL certificate only matches the subdomain.
However, there seems to be no way to add a custom SSL/TLS certificate to your domain. Am I missing some hidden settings? Other Cloudfoundry providers have special interfaces for installing certificates in their web admin applications. So when trying to use a private domain for a Route to an app there and you access it via HTTPS, as expected, you get an invalid certificate error (because you get served the scapp.io certificate).
So: How do I set up a custom SSL certificate for a private domain in Swisscom’s Cloudfoundry?
SSL certificates from Let’s Encrypt are now available on the Swisscom Application Cloud: SSL Secure Routes
You might want to use Cloudflare that provides such a service.
See also Swisscom Cloud SSL certificate
Swisscom Application Cloud team is aware of this issue.
We are currently busy preparing proper answer to it.
Please expect some communication concerning this subject in the next issue of Application Cloud monthly newsletter.
All registered Application Cloud user should receive it. If you are not yet among them - please sign up!