ColdFusion 10 SSL
I'm running a site and a few subdomains in ColdFuson 10 Standard, we just upgraded from ColdFusion 9 where everything works fine.
The sites have an ssl wildcard certificate installed, so all subdomains are protected. I am making http calls between sites but I am getting an error I/O Exception: peer not authenticated
.
Charset [empty string]
ErrorDetail I/O Exception: peer not authenticated
Filecontent Connection Failure
Header [empty string]
Mimetype Unable to determine MIME type of file.
Responseheader struct [empty]
Statuscode Connection Failure. Status code unavailable.
Text YES
I installed the certificate in the correct keystore and verified it there with keytool -list
and restarted, but I still get an authentication error.
I know this is a common problem and is usually fixed by installing a certificate, and there are workarounds for ColdFusion Enterprise, but I'm struggling to get this to work on the standard. Any suggestions?
source to share
After many days of investigating, I came across this blog post which leads to bug report # 3598342 .
It turns out that this is a problem on Windows 2012 servers running IIS 8. The site host has an option "Require server name authentication" or "SNI". Disabling this option allows cfhttp to connect over https.
It turns out to be a problem with the HttpClient library and is fixed in builds 288845, 288846 and 290605. It doesn't really help as the latest update 13 only gives me 287689.
source to share
This might be the problem I ran into when I had to import the secure server certificate into coldfusion before it allows me to connect.
http://helpx.adobe.com/coldfusion/kb/import-certificates-certificate-stores-coldfusion.html
Import certificate for ColdFusion10
Hope it helps. I know it helped me!
source to share