By nature, certs require a private key to verify them, so if a user is passing through your web server, the client's certificate will do you no good beyond the webserver since the webserver does not have the client's private key. Andrew ----- Original Message ----- From: Serge Dubrouski <sergeyfd@xxxxxxxxx> Date: Tuesday, September 26, 2006 5:12 pm Subject: [users@httpd] Proxy SSL and Client Certificates To: users@xxxxxxxxxxxxxxxx > Hello Everyone - > > I have an Apache 2.2.3 server installed with mod_proxy and mod_ssl > configured that I use as a frontend server in Internet. I also have > iPlanet backend legasy server that runs on of our custom > applications. That application has embedded authentication based on > clients SSL Certificates. Now I want to make Apache to act as a proxy > server between Internet users and that backend iPlanet server. The > problem here is that I can't make Apache to pass submitted client > certificate down to iPlanet. Does anybody have any idea how to do > that? Simple SSLProxyEngine does not work. > > Thanks. > > Serge. > > -------------------------------------------------------------------- > - > The official User-To-User support forum of the Apache HTTP Server > Project.See <URL:http://httpd.apache.org/userslist.html> for more > info.To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|