posted 21 years ago
We are facing problems in enabling SSL on BEA weblogic6.1 with sp3. We used RSA Keon CA to request the server certificates. The parameter values that were used for enabling SSL are specifed as below:
<SSL Enabled="true" ListenPort="7002" Name="myserver"
ServerCertificateChainFileName="config/mydomain/rsa_ca.pem"
ServerCertificateFileName="config/mydomain/rsa_cert.pem"
ServerKeyFileName="config/mydomain/rsa_net_key.der"
TrustedCAFileName="/config/mydomain/root.pem"/>
When the application was deployed using this setup, and was accesed using https, there were no errors that are reported.
But when the same setup is being used with a client side authentication we are getting errors as " Client Certificate Chain Invalid" in the WebAgents log file. We are using a RSA agent to protect the WebLogic.
The client side certificate is being asked by this agent but not from the weblogic. i.e the parameter "Client Certificate Enforced" is not set.
So if any of you could help out with the problem it would be of great help.