bpurcell.org - CFHTTP connecting using HTTPS
Calendar
<< September 2010 >>
SunMonTueWedThuFriSat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30    

Subject Archives
Amazon EC2 (15)
ColdFusionMX (155)
Corvette (3)
Flash Lite (4)
Flash Media Server (5)
Flash Player (3)
Flex (39)
General Web Dev (14)
HDTV (3)
Jboss (1)
Jquery (2)
JRun (59)
Max 2003 (3)
Other (33)
PC Hardware (16)
Software (17)
SpatialKey (7)
Wireless (8)
Working Out (1)

RSS Feed
Feed Listing

Site Contents
Home
My Blog
ColdFusion
JRun
Flex
Wireless & Networking
Hardware & Gadgets
HDTV
Software Picks
Pictures
Contact Me
Search


My Articles & Papers
Flex Performance
Server/Client
mm.com Under the Hood
Multiple Instances of CFMX
Multiple Instance Config
NLB with ColdFusion
Clustering CFMX for J2EE
Multi-Tier Hardware LB w CFMX
Cisco CSS & Coldfusion MX
JRun 4 Jini based Clustering
WiFi Growth
2ID Tacweb

Other Hobbys
Body-For-Life Challenge

Personal Projects
Family Pool
Deck Gate

username:
password:
 
 
Viewing Individual Entry / Main
July 24, 2003
CFHTTP connecting using HTTPS

If you have had problems connecting CFHTTP using HTTPS then the following forum posting may help you out.

It ended up being because the server we were connecting to used certificates and the Java didn't like them. To fix it we exported the certificates from IE Certificate manager after installing them from thier website and the entie certificate chain if neccessary (root, and intermediates)...

Export each to c:\cfusion\runtime\jre\lib\security (Assuming CF is installed at this location) using the bianry x.509 format (The default for IE 6). Name them something recognisable (Site1.cer, site2.cer and site3.cer in this case)
Easy part is done.

Now, run a command line (CMD at Start-Run)
type PATH=%PATH%;C:\CFUSIONMX\RUNTIME\JRE\BIN (Assuming CF is installed at this location)
cd\
cd cfusionmx\runtime\jre\lib\security
keytool -import -noprompt -alias SITE1 -file site1.cer -keystore .\cacerts -storepass changeit (assuming you haven't changed the default java password yet)
keytool -import -noprompt -alias SITE2 -file site2.cer -keystore .\cacerts -storepass changeit
keytool -import -noprompt -alias SITE3 -file site3.cer -keystore .\cacerts -storepass changeit
exit

Now restart the CF Services or restart the server and it should work.

http://webforums.macromedia.com/coldfusion/messageview.cfm?catid=3&threadid=456004&highlight_key=y&keyword1=cfhttp&keyword2=ssl

Posted at 9:59 AM. | Link | ColdFusionMX | Comments (4)

Comments

Thank you! I've been searching for days, this fixed my problems!

Posted by Iyad muhanna at 12/6/05 1:24 PM

Big up to you! This solved a huge problem I was having with site I was connecting to via cfhttp. Their SSL certificate was not issued by a trusted authority, so the connection was failing.

Thank you!!!!!!!!

p.s. The webforums.macromedia.com link above doesn't work anymore. Luckily, this page had all I needed.

Posted by Jason Chapin at 11/28/06 4:58 PM

Very helpful post.

For the record I found on my system with default install paths (Windows) the -keystore is cacerts and not .\cacerts

Also useful is listing the certs (there could be more than 100 in there) using the command

keytool -list -keystore cacerts -storepass changeit

Posted by johans at 2/27/07 1:14 PM

Yep, still useful - cheers, Brandon :-)

-- Mike

Posted by Michael Horne at 7/30/09 8:18 AM

  
Page Render Time:219