|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Runtime error when running caspol w/ -pub -hexHi,
When running caspol with the following options: caspol -addgroup All_Code -pub -hex <MY_CERT_IN_HEX> FullTrust -name MyCodeGroup the following error shows up: ERROR: Runtime error: Input data cannot be coded as a valid certificate. The certificate is valid - it works when adding it via the Config Wizard. Any help would be greatly appreciated! Ralf Presumably there's some problem with the way you've encoded your certificate
as hex. To make sure you're using the correct hex value, why not add a code group via the config wizard then copy the hex value from the membership condition information stored in your security.config file? Show quoteHide quote "ralf" <ralf_3zepluch@hpdotcom> wrote in message news:42e90501$1@usenet01.boi.hp.com... > Hi, > > When running caspol with the following options: > > caspol -addgroup All_Code -pub -hex <MY_CERT_IN_HEX> FullTrust -name > MyCodeGroup > > the following error shows up: > > ERROR: Runtime error: Input data cannot be coded as a valid certificate. > > The certificate is valid - it works when adding it via the Config Wizard. > > Any help would be greatly appreciated! > > Ralf > > > > > Thanks for your reply!
I've tried that (using the hex value displayed in the config wizard) and it didn't work. I've created the hex key using System.Security.Cryptography.X509Certificates and got the same hex key. Tried to include the caspol command in a batch file and a Perl script and neither worked. Could this still be some sort of an encoding problem or rather a framework configuration issue - caspol not finding a component to properly decode the hex value? Show quoteHide quote "Nicole Calinoiu" <calinoiu REMOVETHIS AT gmail DOT com> wrote in message news:eixJQX6kFHA.708@TK2MSFTNGP10.phx.gbl... > Presumably there's some problem with the way you've encoded your > certificate as hex. To make sure you're using the correct hex value, why > not add a code group via the config wizard then copy the hex value from > the membership condition information stored in your security.config file? > > > > "ralf" <ralf_3zepluch@hpdotcom> wrote in message > news:42e90501$1@usenet01.boi.hp.com... >> Hi, >> >> When running caspol with the following options: >> >> caspol -addgroup All_Code -pub -hex <MY_CERT_IN_HEX> FullTrust -name >> MyCodeGroup >> >> the following error shows up: >> >> ERROR: Runtime error: Input data cannot be coded as a valid certificate. >> >> The certificate is valid - it works when adding it via the Config Wizard. >> >> Any help would be greatly appreciated! >> >> Ralf >> >> >> >> >> > > The hex string from the mscorcfg.msc UI is not correct for this usage.
Please try the one from the membership condition stored in the <windows>\Microsoft.NET\Framework\<version>\CONFIG\security.config file after running the wizard.* *If you've added the code group to the enterprise policy level, see http://msdn.microsoft.com/library/en-us/cpguide/html/cpconsecurityconfigurationfiles.asp for the file locations. Show quoteHide quote "ralf" <ralf_3zepluch@hpdotcom> wrote in message news:42e9e343@usenet01.boi.hp.com... > Thanks for your reply! > I've tried that (using the hex value displayed in the config wizard) and > it didn't work. I've created the hex key using > System.Security.Cryptography.X509Certificates and got the same hex key. > Tried to include the caspol command in a batch file and a Perl script and > neither worked. Could this still be some sort of an encoding problem or > rather a framework configuration issue - caspol not finding a component to > properly decode the hex value? > > > "Nicole Calinoiu" <calinoiu REMOVETHIS AT gmail DOT com> wrote in message > news:eixJQX6kFHA.708@TK2MSFTNGP10.phx.gbl... >> Presumably there's some problem with the way you've encoded your >> certificate as hex. To make sure you're using the correct hex value, why >> not add a code group via the config wizard then copy the hex value from >> the membership condition information stored in your security.config file? >> >> >> >> "ralf" <ralf_3zepluch@hpdotcom> wrote in message >> news:42e90501$1@usenet01.boi.hp.com... >>> Hi, >>> >>> When running caspol with the following options: >>> >>> caspol -addgroup All_Code -pub -hex <MY_CERT_IN_HEX> FullTrust -name >>> MyCodeGroup >>> >>> the following error shows up: >>> >>> ERROR: Runtime error: Input data cannot be coded as a valid certificate. >>> >>> The certificate is valid - it works when adding it via the Config >>> Wizard. >>> >>> Any help would be greatly appreciated! >>> >>> Ralf >>> >>> >>> >>> >>> >> >> > > Thanks a lot, Nicole - it works now!
Best regards, Ralf Show quoteHide quote "Nicole Calinoiu" <calinoiu REMOVETHIS AT gmail DOT com> wrote in message news:ecLUYmElFHA.3448@TK2MSFTNGP12.phx.gbl... > The hex string from the mscorcfg.msc UI is not correct for this usage. > Please try the one from the membership condition stored in the > <windows>\Microsoft.NET\Framework\<version>\CONFIG\security.config file > after running the wizard.* > > > *If you've added the code group to the enterprise policy level, see > http://msdn.microsoft.com/library/en-us/cpguide/html/cpconsecurityconfigurationfiles.asp > for the file locations. > > > > "ralf" <ralf_3zepluch@hpdotcom> wrote in message > news:42e9e343@usenet01.boi.hp.com... >> Thanks for your reply! >> I've tried that (using the hex value displayed in the config wizard) and >> it didn't work. I've created the hex key using >> System.Security.Cryptography.X509Certificates and got the same hex key. >> Tried to include the caspol command in a batch file and a Perl script and >> neither worked. Could this still be some sort of an encoding problem or >> rather a framework configuration issue - caspol not finding a component >> to properly decode the hex value? >> >> >> "Nicole Calinoiu" <calinoiu REMOVETHIS AT gmail DOT com> wrote in message >> news:eixJQX6kFHA.708@TK2MSFTNGP10.phx.gbl... >>> Presumably there's some problem with the way you've encoded your >>> certificate as hex. To make sure you're using the correct hex value, >>> why not add a code group via the config wizard then copy the hex value >>> from the membership condition information stored in your security.config >>> file? >>> >>> >>> >>> "ralf" <ralf_3zepluch@hpdotcom> wrote in message >>> news:42e90501$1@usenet01.boi.hp.com... >>>> Hi, >>>> >>>> When running caspol with the following options: >>>> >>>> caspol -addgroup All_Code -pub -hex <MY_CERT_IN_HEX> FullTrust -name >>>> MyCodeGroup >>>> >>>> the following error shows up: >>>> >>>> ERROR: Runtime error: Input data cannot be coded as a valid >>>> certificate. >>>> >>>> The certificate is valid - it works when adding it via the Config >>>> Wizard. >>>> >>>> Any help would be greatly appreciated! >>>> >>>> Ralf >>>> >>>> >>>> >>>> >>>> >>> >>> >> >> > > 
Other interesting topics
Import RSA parameters from .PEM format
LogonUser Succeeds - but fails later Getting User Information from a SID Get an unauthenticated windowsIdentity? Export and Import RSA Key Container Cryptography implementation using memeorystream HttpWebRequest.GetRequestStream - Trust Failure In Windows Service Forms Authentication Not Redirecting To Login Page Propagate Credentials from Internet Explorer Host Instead of Defau problem to run WINDOW user control in IE |
|||||||||||||||||||||||
