You are viewing limited content. For full access, please sign in.

Question

Question

Supported SSL Certificate Storage Provider

Forms
Updated March 1, 2023
asked on January 11, 2023

I believe we've had issues in the past with how SSL certificates are generated.  Historically, we found out that there were issues with generating an SSL certificate using the CryptoApi: New Generation (CNG) storage provider.  We've had to use the older CryptoApi Storage Provider (CSP) when  generating certificates for use with Laserfiche (Specifically with DMZ's and certificate authentication, but also curious about internal use)  

I was just wondering, is there any information that Laserfiche can provide regarding,
1.  Is the above statement actually correct, and CNG is still not supported for Certificate authentication in a DMZ environment
2.  If it IS supported, are there any limitations, configurations, or any specific versions that it's supported / not supported on?

 

Any information would be very helpful in guiding our clients, thanks!

0 0

Replies

replied on January 16, 2023

Hi Brandon,

We are not aware of any SSL certificate limitations; can you give more details on where you saw the issue and which function in Forms failed to work with your certificate?

As far as I have tested even self signed certificate could be used with Forms.

Besides, there is option on FormsConfig to accept invalid certificate when generating PDF:

0 0
replied on March 1, 2023

I'm also not aware of any particular limitations regarding Storage Providers. Laserfiche doesn't really deal directly with SSL certificates at all, instead relying on IIS on the server side or the .Net networking code on the client side. Can you be more specific about what doesn't work? Which process is using the certificate, which process needs to accept the certificate, and by what means is it trusted on the client side?

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...