Skip to Main Content

Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

Smart Card Access To OIM

697314Apr 21 2009
I am currently in the process of attempting to secure access to the OIM console by way of smart card. I have been successful in securing the OIM console with oracle access manager (OAM) using basic over ldap authentication.

As a means of moving to client certificate authentication these are the steps I have taken.

I have configured my JBOSS sever that hosts OIM to enable ssl on port 8443. I can successfully access the default JBOSS page over ssl using my smart card.
I have updated the corresponding policy in OAM to use client certificate authentication.
I also updated my ssl.conf.

<VirtualHost 134.251.218.152:443>
.
.
SSLEngine On
ProxyRequests off
ProxyPass /xlWebApp https://134.251.218.152:8443/xlWebApp/Logon.do
ProxyPassReverse /xlWebApp https://134.251.218.152:8443/xlWebApp/Logon.do
ProxyPreserveHost On
.
.
<VirtualHost/>

Note: http://134.251.218.152:443/xlWebapp is my protected resource in OAM

When I try to access https://134.251.218.152:443/xlWebapp I get an Internal server error. Looking at the logs it suggest I need to add the SSLProxyEngine directive.

[Wed Apr 22 00:18:41 2009] [error] SSL Proxy requested for 134.251.218.152:443 but not enabled [Hint: SSLProxyEngine]
[Wed Apr 22 00:18:41 2009] [error] proxy: failed to enable ssl support for 134.251.218.152:8443 (134.251.218.152)

However when I do this I am unable to restart my oracle http server and the following error is printed to the console

ias-component/process-type/process-set:
HTTP_Server/HTTP_Server/HTTP_Server/

Error
--> Process (index=1,uid=822084805,pid=2016)
process crashed during restart
Log:
C:\oracle\HTTP_Server\opmn\logs\\HTTP_Server~1.log

When I look at the a fore mentioned log no errors are reported.

Any assistance with this matter would be greatly appreciated.

Comments

Locked Post
New comments cannot be posted to this locked post.

Post Details

Locked on May 19 2009
Added on Apr 21 2009
0 comments
378 views