iOS Extender using external SSL

(imported topic written by SystemAdmin)

Has anyone been successful in deploying using an externally signed SSL?

I can get the extender to work fine with a self-signed cert but have had no luck using a cert signed by network solutions… As is typical the IBM documentation is sparse on specifics regarding the types of keys, bit length, etc… What I did was take the pfx file (2048 bit cert) (which includes the private key) and generate .cer and .key files using ssl:

openssl pkcs12 -in domain.pfx -clcerts -nokeys -out domain.cer

openssl pkcs12 -in domain.pfx -nocerts -nodes -out domain.key

The action to configure the extender runs fine and the services all start without incident, but the running BESiOSServer.exe process is NOT bound to 443 and of course there is no response.

The derby.log seems to have no decent information either.

Any help is appreciated…

(imported comment written by SystemAdmin)

Added Info:

The iosmdm.log shows:

2013-02-20 09:31:00 EST

INFO

http://MDM.Diagnostics

• Diagnostics error running ssl_cert_expiry: #<NoMethodError: undefined method `getEncoded’ for nil:NilClass>

C:/Program Files (x86)/BigFix Enterprise/Management Extender/MDM Provider/work/ios/webapp/WEB-INF/gems/gems/mdm-platform-1.4.23/lib/mdm_platform/key_store_utils.rb:75:in `to_ruby_cert’

lib/diagnostics.rb:308:in `ssl_cert_expiry’

lib/diagnostics.rb:72:in `run_ssl’

lib/diagnostics.rb:48:in `run’

lib/diagnostics.rb:19:in `export’

config/threads.rb:26:in `file’

2013-02-20 09:31:00 EST

INFO

http://MDM.Diagnostics

• *** Diagnostics Finished ***

I also noticed that when set up with a self signed cert, it’s a 1024 bit cert, whereas the cert from NetSol is 2048 (mandatory minimum)… not sure if that affects it at all.

(imported comment written by SystemAdmin)

OK… I was able to get it to work!

On a hunch, I manually edited the cert and key PEM files and removed all extraneous data outside the BEGIN and END lines… I ran the configuration task with those new files and it works like a champ!