Re: CFHTTP SSL call returns Peer Not Authenticated

[Pete Freitag]

Is the server using a 2048 bit or higher key? I had a client with some
issues connecting to twitter after they upgraded their SSL to 2048 bit, and
the issue was resolved in this case by updating the CF9 server with the
latest hotfixes (9.0.1 Cumulative Hotfix 4).

I know you are on CF8, but you might still want to make sure you have
applied all the hotfixes for CF8, and also update the JVM to the latest
1.6.x (since you are on CF8 you can't upgrade to java 1.7) you can find
(sometimes SSL issues are bound to the jvm as well).

--
Pete Freitag - Adobe Community Professional
http://foundeo.com/ - ColdFusion Consulting  Products
http://hackmycf.com - Is your ColdFusion Server Secure?
http://www.youtube.com/watch?v=ubESB87vl5U - FuseGuard your CFML in 10
minutes



On Mon, Feb 24, 2014 at 12:58 PM, David Phelan dphe...@emerginghealthit.com
 wrote:


 I have written a page that makes an SSL web service call using CFHTTP but
 I cannot seem to get the service to respond with anything other than Peer
 Not Authenticated.  I have imported the certificates for the servers into
 the CF keystore and restarted the CF services.  I found a post relating to
 a similar issue, but it is an issue in CF9 Enterprise only.  I tried the
 workaround anyway to no avail.  The call is being initiated by our servers
 in our DMZ to servers in our internal network for which we added a
 permanent route to our server.  I can ping the server and get the replies.
  I can get the WSDL from the host server through the browser on the client
 server, but the call through CF fail.  Any help would be appreciated.

 We are using CF8 on a win2k8 R2 server.

 David Phelan
 Web Developer
 IT Security  Web Technologies

 Montefiore IT
 3 Odell Plaza, Yonkers, NY 10701
 914-457-6465 Office
 862-234-9109 Cell
 dphe...@emerginghealthit.commailto:dphe...@emerginghealthit.com
 www.emerginghealthit.comhttp://www.emerginghealthit.com/
 www.montefiore.orghttp://www.montefiore.org/
 [Description: Montefiore IT logo]
 http://www.emerginghealthit.com/default.cfm



 

~|
Order the Adobe Coldfusion Anthology now!
http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion
Archive: 
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357747
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm

CFHTTP SSL call returns Peer Not Authenticated

[David Phelan]

I have written a page that makes an SSL web service call using CFHTTP but I 
cannot seem to get the service to respond with anything other than Peer Not 
Authenticated.  I have imported the certificates for the servers into the CF 
keystore and restarted the CF services.  I found a post relating to a similar 
issue, but it is an issue in CF9 Enterprise only.  I tried the workaround 
anyway to no avail.  The call is being initiated by our servers in our DMZ to 
servers in our internal network for which we added a permanent route to our 
server.  I can ping the server and get the replies.  I can get the WSDL from 
the host server through the browser on the client server, but the call through 
CF fail.  Any help would be appreciated.

We are using CF8 on a win2k8 R2 server.

David Phelan
Web Developer
IT Security  Web Technologies

Montefiore IT
3 Odell Plaza, Yonkers, NY 10701
914-457-6465 Office
862-234-9109 Cell
dphe...@emerginghealthit.commailto:dphe...@emerginghealthit.com
www.emerginghealthit.comhttp://www.emerginghealthit.com/
www.montefiore.orghttp://www.montefiore.org/
[Description: Montefiore IT logo]http://www.emerginghealthit.com/default.cfm



~|
Order the Adobe Coldfusion Anthology now!
http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion
Archive: 
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357743
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm