Problem:
- Product Name: VisiBroker
- Product Version: ALL
- Product Component: SSL
- Platform: ALL
VBC/VBJ SSL: How to check that the certificates, private key and password are valid?
Resolution:
A simple method to make sure that the private key and password are valid is to convert the private key from DER to PEM format or vice versa.
During the conversion, it is a requirement to enter the private key and password, and therefore, both the private key and password are verified during the conversion.
Validing the certificates involveds 2 steps (Instructions offered only works on Windows):
1. To check that the certs form a valid chain:
a. Take the last cert in the chain, open it by double clicking on the cert file, and click the "Install Certificate" button under the "General" tab to install the cert.
b. Open the second last cert and click on the "Certification Path" to make sure that the second last cert is chained up nicely with the last cert, and if there are one or more certs before the second last cert, install the second last cert as well using the "Install Certificate" button.
c. Repeat step "b" for the rest of the certs until you reach the first cert in the chain, where you have to verify that the certs form a chain using the "Certification Path" tab, but you don"t have to install the first cert.
2. Check that the fields in the cert are valid.
a. To verify that, double click on the cert file and open the "Details" tab.
b. Verify that all the fields are X509V3 spec compliant.
#Security
#VisiBroker
