Tags: brief, certificate, client, cluster, dmziis, environmentrequests, iis, iisiis, implements, java, occur, proxy, request, routes, run, ssl, validation, via, web
SSL Client certificate validation through a proxy
On Java Studio » Java Knowledge
976 words with 1 Comments; publish: Mon, 24 Sep 2007 14:17:00 GMT; (15046.88, « »)
Brief run down on the environment:
Requests to the web site occur via IIS
IIS is in the DMZ
IIS implements SSL
IIS routes request to a cluster of weblogic servers
Question:If we set up IIS to require client certificates, will the cert credentials be available in the request object when it comes to the servlet hosted on weblogic?
http://java-knowledge.developerfaqs.com/q_java-tech_82379.html
All Comments
Leave a comment...
- 1 Comments
Ok got the answer finally.
This attribute needs to be set in your web-app
<context-param>
<param-name>weblogic.httpd.clientCertProxy</param-name>
<param-value>true</param-value>
</context-param>
And you will be able to read on the client cert parameters.
Again, this is how it is possible, but not the recommended approach. Please review your environment completely before using it.
Credits to the solution: Found this at the following URL
http://forums.bea.com/bea/message.jspa?messageID=202277109&tstart=0
#1; Fri, 13 Jul 2007 12:33:00 GMT