Archived Forum Post

Index of archived forum posts

Question:

HTTP Client Certificate not forwarded

Jun 08 '15 at 07:58

after a certificate is successfully linked to http client, using SetSslClientCert method, the client does not forward the certificate to server during connect as authentication. Is there something I need to do to force it to do so ..?


Answer

If using an old version of Chilkat, make sure to test with the latest version. Also, examine the LastErrorText. If in the SSL/TLS handshake, the server never asks for the certificate, there is no point in sending it..


Answer

Please see log below, seems to me that the server side did not ask for certificate, but when I use FireFox poster to do it manually, the server did ask for certificate. Can u see anything on log that can reveal where the problem lies ?

ChilkatLog: PostXml: DllDate: May 8 2015 ChilkatVersion: 9.5.0.49 UnlockPrefix: KUNKOO.CB10516 Username: WIN-S9BE90FU7N5:Administrator Architecture: Little Endian; 32-bit Language: ActiveX VerboseLogging: 0 url: https://--hide-- charset: iso-8859-1 fullRequest: a_synchronousRequest: generateRequest: httpRequestGenStartLine: genStartLine: startLine: POST /xtp.asp HTTP/1.1 --genStartLine --httpRequestGenStartLine addCookies: Not auto-adding cookies. sendCookies: 1 cookieDir: --addCookies --generateRequest fullHttpRequest: domain: --hide -- port: 443 ssl: 1 openHttpConnection: Opening connection directly to HTTP server. httpHostname: -- hide -- httpPort: 443 ssl: 1 HTTPS secure channel established. --openHttpConnection connectTime: Elapsed time: 2046 millisec sendRequestHeader: sendHeaderElapsedMs: 0 --sendRequestHeader sendRequestBody: sendBodyElapsedMs: 0 --sendRequestBody readResponseHeader: clientHandshake2: readHandshakeMessages: WindowsError: An existing connection was forcibly closed by the remote host. WindowsErrorCode: 0x2746 numBytesRequested: 5 Failed to receive data on the TCP socket Failed to read beginning of SSL/TLS record. --readHandshakeMessages --clientHandshake2 recvUntilMatch: Socket fatal error. Failed to read response header. --readResponseHeader --fullHttpRequest success: 0 --a_synchronousRequest success: 0 --fullRequest Failed. --PostXml --ChilkatLog


Answer

Thanks. If you wish, please send to me in private email the domain name of the HTTPS server. (support@chilkatsoft.com). This is not a client cert problem, but more likely something else.