Might want to look for a hotfix for wildcats certs in CF ____ Steve Ross 912.344.8113
On Nov 16, 2010, at 9:35 AM, "Clarke Bishop" <[email protected]> wrote: > I am trying to access a REST API using CFHTTP. It’s an https url, and I’m > getting this error: > > > > I/O Exception: Name in certificate `*.hubapi.com' does not match host name > `hubapi.com' > > > > I downloaded the certificate and followed the instructions for adding it to > my ColdFusion server like this: > > http://www.talkingtree.com/blog/index.cfm?mode=entry&entry=25AA75A4-45A6-2844-7CA3EECD842DB576 > > > > (The Adobe docs have essentially the same instructions). > > > > This is what the REST provider said: > > This is probably a ColdFusion quirk. The certificate is signed as: > > DNS Name=*.hubapi.com > > DNS Name=hubapi.com > > > > ColdFusion must not be respecting all lines, it's reading the first and > getting the wildcard cert only. You may want to investigate the ColdFusion > security settings to see if this can be adjusted. > > > > We have seen issues with this in the past, depending on the way ColdFusion > implements its certificate verification it won't recognize the wildcard in > the domain cert. The cURL libraries had the same problem in earlier versions > of Java, but we fixed it simply by updating our JRE versions. I'm not sure > of a solution for your issue though, but the hubapi.com certificates are > definitely valid. > > > > They are probably right, as I can retrieve the data using a browser. > > > > I’m running ColdFusion 8. > > > > Any pointers on how to resolve this would be much appreciated! Will CF8 run > with any version of the JRE – Like the latest version? > > > > Clarke > > > > Office: 770-642-1353 > eMail: [email protected] > > > > > > > ------------------------------------------------------------- > To unsubscribe from this list, manage your profile @ > http://www.acfug.org?fa=login.edituserform > > For more info, see http://www.acfug.org/mailinglists > Archive @ http://www.mail-archive.com/discussion%40acfug.org/ > List hosted by FusionLink > -------------------------------------------------------------
