[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 333
  • Last Modified:

SSL Implementation in Oracle Application Server

We are implmenting a cyber mall kind of stuff using Oracle Application Server 4.0.7 as a middle ware.

I have already deployed a Test Server ID from VeriSign into my OAS.

I want to restrict a Virtual path to normal HTTP requests. ie. A Virtual path, say '/secure/registration/', should be accessed only via HTTPS and not via HTTP protocol.

What do I have to do to get this feature in OAS?

Where can I make these settings in Oracle application server?

0
tendlya
Asked:
tendlya
1 Solution
 
mccallwCommented:
Unfortunately, you may not be able to do what you want (ie. secure and non-secure in the same app)

From the OAS Developer's Guide

4. Enable IIOP/SSL in the Application Server

You must start up the ORB in the application server in SSL mode. To do this:

1. Select ORB Configuration in the navigational tree. This displays the General Parameters form in the right frame.
2. In the General Parameters form, set Security to "IIOP/SSL".
3. Click Apply.

Note that this switch affects communication between all application server compo-nents, not just communication between clients and a particular JCORBA application.
This means that all applications and clients will use IIOP/SSL. You cannot have some applications executing in secure mode and other applications executing in non-secure mode.
See Chapter 5, "Security for IIOP Requests" of the Security Guide for details on this security option.

I don't have a copy of the "Security Guide" or I would post that info as well.  Check out technet.oracle.com for a copy of that doc.
0

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now