on 12-26-2007 2:51 PM
hello,
i've set up header variables for user authentication is SAP EP and now, as indicated in the [documentation|http://help.sap.com/saphelp_nw04s/helpdata/en/d0/a3d940c2653126e10000000a1550b0/frameset.htm], i would like to set up SSL with mutual authentication between portal and the web server that authenticates the user.
the problem is that i can't find how to "configure the J2EE Engine to only accept incoming requests that are signed with the web server certificate"
any idea?
best regards
found a solution using a self signed certificate!
best regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
In Visual Admin -> Server -> Services -> Key Storage -> TrustedCAs view import the client SSL cert from the HTTP rev proxy. Then go to Dispatcher -> Services -> SSL Provider. Select the HTTPS port (usually 5xx01, where xx is the instance number), go to the tab Client Auth, select the option "require client certificate" and add the SSL certificate from the TrustedCAs you have already imported.
This is a runtime cofig, no need to restart. After that, the AS Java will establish SSL connections only with the HTTP reverse proxy.
Best regards,
Tsvetomir
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
thanks alot : i've done exactly what you said but i keep having an http error 502 (bad gateway - The proxy server received an invalid response from an upstream server)
if i require my provider certificate (GlobalTrust) in SSL Provider it works, but i only want to authorize my proxy server certificate not all certificates from globaltrust
any idea?
best regards
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.