Apache and oc4j, client certificates

We are using oracle 9ias and its built in apache HTTP/S server.

We have enabled SSL, and we are using client certificates as part of client authentication.

Everything was working fine, Apache had established the two way authentication, and servlets are displayed over an SSL channel.

We need certain fields of the client certificate, but at this point we discovered Apache do not send its SSL related variables to the servlets (running on an OC4J instance)

Does anyone know how pass the SSL related variables of Apache to the servlet on OC4J instance?


I've already posted this question to appservers/oracleias topic. I couldn't be sure whether the concept is more apache related. Sorry for the dublication

Of course the points are dublicated too :)
kartaltabakAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ferdaozdemirCommented:
I've already posted the answer to appservers/oracleias. Hoping it is the right answer, I reanswer to this question for convenience. (and points :))

I assume you already setup the ssl with two way authentication.

You should write the following to make the apache to pass the certificate related data.

SSLOptions +ExportCertData


But, besides, you should write to make oc4j read the SSL variables.

Oc4jExtractSSL On

As far as I know, only one of them will not be enough.

Hope this helps.

-- ferda
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
kartaltabakAuthor Commented:
Thank you, this worked...

Could you please tell me where this information is documented?

It seems easy but I had not been able to find the Oc4j related directives...



0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Apache Web Server

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.