Smart Card Access To OIM
I am currently in the process of attempting to secure access to the OIM console by way of smart card. I have been successful in securing the OIM console with oracle access manager (OAM) using basic over ldap authentication.
As a means of moving to client certificate authentication these are the steps I have taken.
I have configured my JBOSS sever that hosts OIM to enable ssl on port 8443. I can successfully access the default JBOSS page over ssl using my smart card.
I have updated the corresponding policy in OAM to use client certificate authentication.
I also updated my ssl.conf.
<VirtualHost 134.251.218.152:443>
.
.
SSLEngine On
ProxyRequests off
ProxyPass /xlWebApp https://134.251.218.152:8443/xlWebApp/Logon.do
ProxyPassReverse /xlWebApp https://134.251.218.152:8443/xlWebApp/Logon.do
ProxyPreserveHost On
.
.
<VirtualHost/>
Note: http://134.251.218.152:443/xlWebapp is my protected resource in OAM
When I try to access https://134.251.218.152:443/xlWebapp I get an Internal server error. Looking at the logs it suggest I need to add the SSLProxyEngine directive.
[Wed Apr 22 00:18:41 2009] [error] SSL Proxy requested for 134.251.218.152:443 but not enabled [Hint: SSLProxyEngine]
[Wed Apr 22 00:18:41 2009] [error] proxy: failed to enable ssl support for 134.251.218.152:8443 (134.251.218.152)
However when I do this I am unable to restart my oracle http server and the following error is printed to the console
ias-component/process-type/process-set:
HTTP_Server/HTTP_Server/HTTP_Server/
Error
--> Process (index=1,uid=822084805,pid=2016)
process crashed during restart
Log:
C:\oracle\HTTP_Server\opmn\logs\\HTTP_Server~1.log
When I look at the a fore mentioned log no errors are reported.
Any assistance with this matter would be greatly appreciated.