Skip to Content
0

Certificate used by communication channel

Feb 17, 2017 at 03:33 PM

103

avatar image

Hi,

Is there any way to find out the communication channel name which is using a particular SSL certificate imported in TrustedCAs.

Thanks,

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

2 Answers

Vadim Klimov Feb 17, 2017 at 04:24 PM
0

Hello Apu,

Unfortunately, no, as to my knowledge. In communication channels, there is no specification of which particular imported certificate entry (containing SSL certificate / chain of certificates) has to be used. Instead of this, at runtime, when corresponding channel initiates HTTPS connection to the target, it uses entire content of key storage view 'TrustedCAs' while executing certificate chain verifier logic during SSL handshake process with the target (and scanning TrustedCAs entries for a valid and trusted certificate chain compared to the one provided by the target). Which means, at design/configuration time, there is no straightforward possibility to execute SSL certificate "where-used" action.

Having written so, I shall note that it might be helpful to display SSL certificate in question and check subject and subject alternative names in it, which will give a hint regarding which host names the certificate has been issued for, and then correlate these findings with communication channels that use corresponding host names as targets, but this will require a bit of manual work and efforts, especially if there are many SSL certificate to be checked.

Regards,

Vadim

Share
10 |10000 characters needed characters left characters exceeded
Manoj K Feb 17, 2017 at 06:52 PM
0

Apu,

Yes you can find it using extended search option in ID part.

But as mentioned if you are sure that the particular SSL certificate is mentioned in your communication channel only.

br,

Manoj


ssl.png (14.7 kB)
Show 2 Share
10 |10000 characters needed characters left characters exceeded

Hi Manoj,

Search against keystore view and/or entry for SOAP communication channels will output found channels where certificate authentication is enabled, and search query with the certificate specified in search criteria, will look for certificates uploaded to the keystore view and used for authentication, not for SSL. From the question raised by Apu, I understood he was interested in correlating SSL certificates and channels where they are used, but not authentication certificates, - and as for SSL certificates, they are not referred in communication channel configuration explicitly, hence I doubt it is possible to query and identify this correlation using search tools.

Regards,

Vadim

0

Hi Vadim.

Sorry, May be i misunderstood the query.

Br,

Manoj

1