CF8, SSL, cfhttp and clientCert issue

Report · Sep 17, 2007

I was excited to see that CF8 allowed you to pass a clientCert in cfhttp. Conveniently, I needed to do this to integrate with a credit company.

But it doesn't appear to work. In fact, cfhttp is 'undefined' when using it with clientCert.

I have installed the special Cert file manually.

To manually import a certificate:
Go to a page on the SSL server in question.
Double-click the lock icon.
Click the Details tab.
Click Copy To File.
Select the base64 option and save the file.
Copy the CER file into C:\CFusionMX7\runtime\jre\lib\security (or whichever JRE ColdFusion is using).
Run the following command in the same directory (keytool.exe is located in C:\CFusionMX7\runtime\jre\bin):
keytool -import -keystore cacerts -alias giveUniqueName -file filename.cer

When I run it without passing the clientCert, I get a cfhttp response from the webserver (403)... and error, but at least I get something.

When I add in the clientCert, cfhttp doesn't appear to work and I get a cfhttp is undefined error.

Does this feature actually work? Anyone have any suggestions??

thanks,
alan

Report · Sep 20, 2007

I figured it out. No need to mess with the .cer file or do the add to keystore method.

You acually reference the direct path to the .pfx file and use the client cert passowrd... much simpler. I was looking at the previous MX7 folks trying to do the same thing...

This is GOBs easier.

Adobe Community

CF8, SSL, cfhttp and clientCert issue

1 Correct answer