hello,
we're trying set test server demonstrate certificate authentication rights management 8.0.1 , acrobat 8.1, , far bit stumped. i'm using rsa 2048 @ stages of key generation process.
i've used guide linked below, skipping web server ssl key section , jumping on creating client certs straight after creating ca certs.
http://marc.info/?l=tomcat-user&m=106293430225790&w=2
here's quick outline of basic steps taken:
1. set active directory domain mapping ldap , sync. assign domain user rights management end user role.
2. set rights management accept certificate authentication , block acrobat 7 clients.
3. using openssl, create root ca.
4. upload ca public key certificates in admin ui.
5. set certificate mapping on e->primary email ad domain
6. create client certificate , signing request matching domain user rights management end user role.
7. sign client request using ca.
8. bundle client request p12.
9. import ca public key acrobat trusted identities , windows trusted root ca store.
10. import p12 acrobat.
11. export .cer file identity acrobat.
12. using admin ui, upload client certificate test certificate mapping, green verification (with mapping should okay message)
13. attempt add policy server in acrobat, when prompted select client certificate.
at point whole thing falls down, , dialog box pops saying:
"acrobat security
x - unable connect service @ https://lces:443
you not have permission perform operation."
now, there's i've done wrong or missed @ stage, i'm wondering if theory , i've messed creating certificates (several times), or there key concept i've misunderstood.
if there documentation or guides around on setting rights management use certificate authentication, i've yet find them, if knows of please let me know.
any feedback people who've implementated certificate authentication using acrobat 8 , lcrm 8.0.1 appreciated, , if solve problem myself i'll sure post whatever missed or did wrong error message.
if there's other information can provide might figure out issue lies, please let me know.
thanks,
robert hirst
we're trying set test server demonstrate certificate authentication rights management 8.0.1 , acrobat 8.1, , far bit stumped. i'm using rsa 2048 @ stages of key generation process.
i've used guide linked below, skipping web server ssl key section , jumping on creating client certs straight after creating ca certs.
http://marc.info/?l=tomcat-user&m=106293430225790&w=2
here's quick outline of basic steps taken:
1. set active directory domain mapping ldap , sync. assign domain user rights management end user role.
2. set rights management accept certificate authentication , block acrobat 7 clients.
3. using openssl, create root ca.
4. upload ca public key certificates in admin ui.
5. set certificate mapping on e->primary email ad domain
6. create client certificate , signing request matching domain user rights management end user role.
7. sign client request using ca.
8. bundle client request p12.
9. import ca public key acrobat trusted identities , windows trusted root ca store.
10. import p12 acrobat.
11. export .cer file identity acrobat.
12. using admin ui, upload client certificate test certificate mapping, green verification (with mapping should okay message)
13. attempt add policy server in acrobat, when prompted select client certificate.
at point whole thing falls down, , dialog box pops saying:
"acrobat security
x - unable connect service @ https://lces:443
you not have permission perform operation."
now, there's i've done wrong or missed @ stage, i'm wondering if theory , i've messed creating certificates (several times), or there key concept i've misunderstood.
if there documentation or guides around on setting rights management use certificate authentication, i've yet find them, if knows of please let me know.
any feedback people who've implementated certificate authentication using acrobat 8 , lcrm 8.0.1 appreciated, , if solve problem myself i'll sure post whatever missed or did wrong error message.
if there's other information can provide might figure out issue lies, please let me know.
thanks,
robert hirst
hi rob,<br /><br />i see trying connect port 443. <br /><br />can connect adminui using following?<br />https://lces/adminui <br />note :443 isn't required default port browsers , adobe reader.<br /><br />if not mean ssl port on jboss pointing jboss' default ssl port 8443. try <br />https://lces:8443/adminui <br /><br />the server.xml can found here<br /><livecycle8>\jboss\server\all\deploy\jbossweb-tomcat55.sar\server.xml<br /><br />cheers<br /><br />larry bunton<br />avoka technologies<br />sydney, australia
More discussions in LiveCycle Rights Management
adobe
Comments
Post a Comment