Solved

Apache and oc4j,  client certificates

Posted on 2003-12-08
2
517 Views
Last Modified: 2008-02-01
We are using oracle 9ias and its built in apache HTTP/S server.

We have enabled SSL, and we are using client certificates as part of client authentication.

Everything was working fine, Apache had established the two way authentication, and servlets are displayed over an SSL channel.

We need certain fields of the client certificate, but at this point we discovered Apache do not send its SSL related variables to the servlets (running on an OC4J instance)

Does anyone know how pass the SSL related variables of Apache to the servlet on OC4J instance?


I've already posted this question to appservers/oracleias topic. I couldn't be sure whether the concept is more apache related. Sorry for the dublication

Of course the points are dublicated too :)
0
Comment
Question by:kartaltabak
2 Comments
 
LVL 1

Accepted Solution

by:
ferdaozdemir earned 500 total points
Comment Utility
I've already posted the answer to appservers/oracleias. Hoping it is the right answer, I reanswer to this question for convenience. (and points :))

I assume you already setup the ssl with two way authentication.

You should write the following to make the apache to pass the certificate related data.

SSLOptions +ExportCertData


But, besides, you should write to make oc4j read the SSL variables.

Oc4jExtractSSL On

As far as I know, only one of them will not be enough.

Hope this helps.

-- ferda
0
 

Author Comment

by:kartaltabak
Comment Utility
Thank you, this worked...

Could you please tell me where this information is documented?

It seems easy but I had not been able to find the Oc4j related directives...



0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Hi, in this article I'm going to teach you how to run your own site, and how to let people in (without IP). I'll talk about and explain each step... :) By the way, everything in this Tutorial is completely free and legal. This article is for …
If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now