 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Java Forum / Security / March 2005IP Address as Common Name and HostNameVerifier?
Hello, Our test network does not have a DNS - we access the machines by their IP addresses. One of the servers needs to provide HTTPS connectivity so I generated a certificate for it using the IP address as the Common Name. The problem is that Hostname Verification ( or at least the default Sun Java implementation ) seems to automatically fail if the host name is an IP address - even if it matches the Common Name in the certificate. I would rather not have to set up all the clients in the test network to use custom host name verifiers, or turn hostname verification off either, since this means getting further away from a 'production like' environment. Is there any other way around this? cheers Perryn > Hello, > [quoted text clipped - 18 lines] > cheers > Perryn You do not need DNS, create a host file on the servers and clients that contains the hostnames of the servers on your test network. Then create the certificate using the server hostname as the CN. Chuck well, that must have been a nasty surprise. Have you tried putting the IP address in the subjectAltName extension? Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.