Getting Started

7.You may optionally enter your Password for the client certificate here too. If you check Save this password will be stored, encrypted, along with the certificate itself. Please note this is a security risk as anyone who can acquire a copy of your registry will be able to use your certificate.

8.Once you have configured the certificates click OK and then Connect in the New Connection dialog box.

9.Login as usual when the telnet login prompt appears.

Error Messages

Could not connect TCP/IP socket.

The most likely causes of this error are that the service is not running on the server or the port number is incorrect.

Could not connect SSL socket. Please check that your client certificate is correct.

This message is returned if the server refuses the SSL connection. The most likely causes are that the server is expecting a client certificate but none has been specified or the client certificate specified is invalid for some reason. This error may also be seen if the server is running an incompatible version of SSL. TeemTalk currently supports SSL2, SSL3 and TLS.

The server’s certificate cannot be verified.

The server’s identity certificate was not signed by any of the root certificates installed in TeemTalk. TeemTalk will not connect to a host it cannot verify.

Common name does not match host name.

The common name is part of the server’s certificate. SSL assumes this will match the host name given in the Host Name box in the Connection Wizard, or Connect To box in the New Connection dialog box. If they do not match TeemTalk will not connect to the host.

NotesAboutCertificates

The SSL Protocol uses three types of certificate:

1.Server certificates. These are always sent by the server to the client to validate the server’s identity. SSL handles them internally and they are never saved on the client.

2.Client certificates. These are sent by the client, only if the server requests them, and validate the client’s identity. The client will need to store these locally. Usually a client will only have one certificate to validate it on a particular server but different servers may require different client certificates.

2-19