How to Use the Channel Setting and Virtual Host Setting to Make Two Way SSL Effective Only on the Virtual Host
(Doc ID 2128931.1)
Last updated on DECEMBER 12, 2017
Applies to:Oracle WebLogic Server - Version 22.214.171.124.0 and later
Information in this document applies to any platform.
To use Virtual Hosts to control the below scenario:
- There is only one Managed Sever named Server1
- An application deployed on the Server
- When the application is accessed from the URL mentioned in Scenario 1 below - the client certificate should be checked to confirm that it was created by a Certificate Authority the server trusts
- If the application is accessed from the URL in Scenario 2 below - the client certificate will not be checked
- User A sends the request to server Server 1 using URL (e.g https://servername:7002/jspsimple/login.jsp)
- It must check the client certificate (two way SSL)
NOTE: In the URL above, servername is the virtual host name representing the localhost. The IP address is different from the IP address used in Scenario 2
- User B sends a request to server Server1 Using URL(e.g https://xx.xx.xx.xx:7002/jspsimple/login.jsp)
- It will not check the client certificate (one way ssl)
NOTE: xx.xx.xx.xx is the real IP address like 10.182.155.106
Both of these scenarios can be configured by setting up the [Virtual Host] and [Channel] correctly.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!