Security helpThe AdminCaptureRootCA servlet is for use in setting up two-way SSL authentication between the WebLogic Server and a client browser. It allows you to snoop the certificate authorities of the browser client. It gets a certificate chain from the browser client and writes the certificate authority's key out to a standard file that you can set as the value for the WebLogic property weblogic.security.clientRootCA. Then, once you've restarted WebLogic, the browser client can return and ask for authorization, and the test for RootIsValid() will return true. If you want to restrict access to clients that have certificates issued by a particular certificate authority, this is a simple way to do so.
|
|
Copyright © 2000 BEA Systems, Inc. All rights reserved.
|