<div dir="ltr">Ah!  That's it, thanks Rob, appreciate it!</div><br><div class="gmail_quote"><div dir="ltr">On Fri, May 26, 2017 at 11:28 AM Rob Crittenden <<a href="mailto:rcritten@redhat.com">rcritten@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Jamie Johnson wrote:<br>
> Thanks for the reply Rob.  Here is the requested information, let me<br>
> know if I cut too much<br>
><br>
> Certificate:<br>
>     Data:<br>
>         Version: 3 (0x2)<br>
>         Serial Number: 4098 (0x1002)<br>
>         Signature Algorithm: sha256WithRSAEncryption<br>
>         Issuer: --cut--<br>
>         Validity<br>
>             Not Before: May 25 20:52:11 2017 GMT<br>
>             Not After : Jun  4 20:52:11 2018 GMT<br>
>         Subject: --cut--<br>
>         Subject Public Key Info:<br>
>             Public Key Algorithm: rsaEncryption<br>
>             RSA Public Key: (2048 bit)<br>
>                 Modulus (2048 bit):<br>
> --cut--<br>
>                 Exponent: 65537 (0x10001)<br>
>         X509v3 extensions:<br>
>             X509v3 Basic Constraints:<br>
>                 CA:FALSE<br>
>             Netscape Cert Type:<br>
>                 SSL Server<br>
>             Netscape Comment:<br>
>                 OpenSSL Generated Server Certificate<br>
>             X509v3 Subject Key Identifier:<br>
>                 --cut--<br>
>             X509v3 Authority Key Identifier:<br>
>                 --cut--<br>
><br>
>             X509v3 Key Usage: critical<br>
>                 Digital Signature, Key Encipherment<br>
>             X509v3 Extended Key Usage:<br>
>                 TLS Web Server Authentication<br>
>     Signature Algorithm: sha256WithRSAEncryption<br>
> --cut--<br>
> -----BEGIN CERTIFICATE-----<br>
> --cut--<br>
> -----END CERTIFICATE-----<br>
<br>
Is this the cert you are trying to use to authenticate with? If so it<br>
needs the TLS Web client authentication extension.<br>
<br>
rob<br>
<br>
</blockquote></div>