Help with WLS , PKI
We are using a perimeter authentication device to authenticate a client request that contains an X.509 certificate. The device forwards the request to the WebLogic Server in an HTTP header labeled ‘WL-Proxy-Client-Cert’.
We perform three configuration steps to ready the WL server. First, our WL server has been configured to use proxy authentication (Client Cert Proxy Enabled set to true). Second, our DefaultIdentityAsserter has been set to use X.509 certificates as active types, with the CN identified as the field associated with the username. Finally, our deployed web application has been set to use CLIENT-CERT protection in its deployment descriptor.