Sarge516
asked on
Resolving SSL error "The certificate is not valid for the requested usage"
I am trying to upgrade an existing system from using plain unencrypted sockets to use SSL. The server is a java socket listener program (not http) and the client is developed in WinDev. WinDev accesses the personal store and apparently does not allow exceptions to security.
For testing purposes, I acquired an SSL certificate from StartSSL. My java server keystore shows the keypair for me and 2 certificates from StartSSL. The windows client has the cert imported into the personal and the Trusted Root Certification area. Windev recognizes the certs.
When the client attempts to connect to the new SSL server, it generates the error "The certificate is not valid for the requested usage". From what I can tell, this is related to its purpose. The certificate purpose states
Proves your identity to a remote computer
Protects e-mail messages
For testing/development, the client and server are localhost.
So my question is, what does this error really mean when using my own SSL Server and SSL client ? How can this be resolved ?
For testing purposes, I acquired an SSL certificate from StartSSL. My java server keystore shows the keypair for me and 2 certificates from StartSSL. The windows client has the cert imported into the personal and the Trusted Root Certification area. Windev recognizes the certs.
When the client attempts to connect to the new SSL server, it generates the error "The certificate is not valid for the requested usage". From what I can tell, this is related to its purpose. The certificate purpose states
Proves your identity to a remote computer
Protects e-mail messages
For testing/development, the client and server are localhost.
So my question is, what does this error really mean when using my own SSL Server and SSL client ? How can this be resolved ?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.