Solved

Multiple certificates in one JBOSS instance?

Posted on 2008-06-17
3
802 Views
Last Modified: 2008-08-20
We have one JBOSS instance running several applications (call them tls-lls and tls-diageo).  We have a load balancer that maps an external URL e.g. dgb.pos.address.com to the JBOSS server as <ip>/tls-diageo.  

We're running into a problem with SSL and certificates in that we can apparently only have one certificate for the JBOSS instance, because a certificate can only be related to one ip address.  If we only have one certificate then we can only have one domain name in the certificate and so when the user navigates to the other application for the first time, the browser will show a warning because the domain name doesn't match what is in the certificate.

Is there a way to have more than one certificate in a single JBOSS instance?

Thanks,

Ed.
0
Comment
Question by:acebass
  • 2
3 Comments
 
LVL 9

Expert Comment

by:CLoz
ID: 21807308
You will need to use IP base virtual servers on the JBOSS server.  You will assign an IP address to each service you are hosting on the JBOSS server.
0
 
LVL 1

Author Comment

by:acebass
ID: 21810748
OK, what is "IP base virtual servers" and how do I assign an IP address to each service?

Thanks,
0
 
LVL 9

Accepted Solution

by:
CLoz earned 250 total points
ID: 21831648
You'll will need to but Apache in front of the JBOSS service.  Apache will handle the client request then forward them to JBOSS.   In Apache you can then create IP-based virtual host, basically your web services will each have their own IP address assigned to them.

Here's a link on how to configure Apache in front of JBOSS:
http://www.skillipedia.com/res/index.hm?cmd=linked&rid=125

Apache IP-based Virtual Host:
http://www.ubuntugeek.com/howto-create-name-based-and-ip-based-virtual-hosts-in-apache.html
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In our day to day coding, how many times have we come across a necessity to check whether a URL is a broken link or not? For those of you that answered countless and are using ColdFusion like myself, then this article is for you.  It will show yo…
Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question