We're trying to set up a test server to demonstrate Certificate Authentication with Rights Management 8.0.1 and Acrobat 8.1, and so far are a bit stumped. I'm using RSA 2048 at all stages of the key generation process.
I've basically used the guide linked below, but skipping the Web Server SSL key section and jumping on to creating client certs straight after creating the CA certs.
You do not have permission to perform this operation."
Now, there's probably something I've done wrong or missed at some stage, but I'm wondering if the theory is good and I've just messed up creating the certificates (several times), or there is some key concept I've misunderstood.
If there is any documentation or guides around on setting up Rights Management to use Certificate Authentication, then I've yet to find them, so if anyone knows of any please let me know.
Any feedback from people who've successfully implementated Certificate Authentication using Acrobat 8 and LCRM 8.0.1 would be greatly appreciated, and if I do solve the problem myself I'll be sure to post whatever it was I missed or did wrong to get to the error message.
If there's any other information I can provide which might help figure out where the issue lies, then please let me know.
Hi Rob,<br /><br />I see that you are trying to connect to port 443. <br /><br />Can you connect to the adminui using the following?<br />https://lces/adminui <br />Note :443 isn't required as it is the default port for all browsers and Adobe Reader.<br /><br />If not this could mean that the SSL port on JBoss is pointing to the JBoss' default SSL port 8443. Try <br />https://lces:8443/adminui <br /><br />The server.xml can be found here<br /><LiveCycle8>\jboss\server\all\deploy\jbossweb-tomcat55.sar\server.xml<br /><br />Cheers<br /><br />Larry Bunton<br />Avoka Technologies<br />Sydney, Australia
I'd used the Add ID option without being on a specific store, and it had placed it under Digital IDs. It was still offering me the option to use that certificate to authenticate against the server with. I imported the certificate into the Windows Digital ID section it now authenticates against the server perfectly.
So problem solved, although I'm still not 100% sure why the Import Digital ID places the certificates into a location which doesn't work with Rights Management, although I'm sure there's a good reason.
I'll make sure that we only add to the Windows Digital ID container in Acrobat/Reader or import directly into the Personal Certificate store in Windows for the demonstration.
I am having problem to add contact to my trust list from a Directory Server. I can connect to the directory server, but I don't know what to insert into the Directory name. So, I just can't find the search any contact by using this method.
I have installed LCES 8.0 TurnKey for JBOSS to evaluate the Rights Management. The system is running on Virtual PC and in the same VPC also Acrobat Pro 8 is installed. I have configured the server address for RM as http://localhost:8080/ and from Acrobat trying to connect to the same address as the RightsManagement Server. But Acrobat cannot connect to the server from that address.
I have been informed that I need SSL conncetion to JBOSS but I have no clue how to set it.