Secure Communication between Weblogic 5.1 and IIS

I have WL5.1 and IIS running on two separate machines. I've installed
SSL certificates on IIS. So the traffic between the browser and IIS is
encrypted.
When the "iisforward" filter is used to forward servlet execute to
Weblogic I get a message on the browser which says "You're about to be
redirected to a connection which is not secure. The information you're
sending to the current site might be retransmitted to a non-secure site. Do
you wish to continue?"
This makes sense as IIS does not know where the filter is forwarding this
data. But how do I get rid of that message? There does not seem to be a way
in 5.1 for the plugin/filter on IIS to communicate securely over SSL to the
Weblogic server.
Thanks,
- Ayush

Can you give more details on how you configured credentials on jboss end.
post this on jboss forumn as the solution lies in jboss configuration not that of wls.

Similar Messages

  • SSL between WebLogic 10.0 and IIS 6.0 does'nt work

    Hi,
    I don't understand why the SSL connection between WL10.0 and IIS 6.0 doesn't work. My ini file is below:
    WebLogicHost=10.0.162.31
    WebLogicPort=7002
    ConnectTimeoutSecs=20
    ConnectRetrySecs=2
    WlForwardPath=/weblogic
    PathTrim=/weblogic
    Debug=ON
    SecureProxy=ON
    TrustedCAFile=C:\trustedca.pem
    EnforceBasicConstraints=off
    RequireSSLHostMatch=false
    where 'trustedca.pem' is the pem extracted (and converted) from wlsdemoca contained into DemoTrust.jks and '7002' is my ssl listen port.
    I need to set any more parameter??
    My wlpsoxy.log for one request is:
    ================New Request: [crl4/.wlforward] =================
    Thu Apr 17 10:27:32 2008 <351612084388524> SSL is not being used
    Thu Apr 17 10:27:32 2008 <351612084388524> resolveRequest: wlforward: /crl4/
    Thu Apr 17 10:27:32 2008 <351612084388524> URI is /crl4/, len=6
    Thu Apr 17 10:27:32 2008 <351612084388524> Request URI = [crl4/]
    Thu Apr 17 10:27:32 2008 <351612084388524> attempt #0 out of a max of 10
    Thu Apr 17 10:27:32 2008 <351612084388524> Trying a pooled connection for '10.0.162.31/7001/7001'
    Thu Apr 17 10:27:32 2008 <351612084388524> getPooledConn: No more connections in the pool for Host[10.0.162.31] Port[7001] SecurePort[7001]
    Thu Apr 17 10:27:32 2008 <351612084388524> general list: trying connect to '10.0.162.31'/7001/7001 at line 1239 for '/crl4/'
    Thu Apr 17 10:27:32 2008 <351612084388524> INFO: New NON-SSL URL
    Thu Apr 17 10:27:32 2008 <351612084388524> Connect returns -1, and error no set to 10035, msg 'Unknown error'
    Thu Apr 17 10:27:32 2008 <351612084388524> EINPROGRESS in connect() - selecting
    Thu Apr 17 10:27:32 2008 <351612084388524> Local Port of the socket is 1476
    Thu Apr 17 10:27:32 2008 <351612084388524> Remote Host 10.0.162.31 Remote Port 7001
    Thu Apr 17 10:27:32 2008 <351612084388524> general list: created a new connection to '10.0.162.31'/7001 for '/crl4/', Local port: 1476
    Thu Apr 17 10:27:32 2008 <351612084388524> WLS info in sendRequest: 10.0.162.31:7001 recycled? 0
    Thu Apr 17 10:27:32 2008 <351612084388524> URL::parseHeaders: CompleteStatusLine set to [HTTP/1.1 200 OK]
    Thu Apr 17 10:27:32 2008 <351612084388524> URL::parseHeaders: StatusLine set to [200 OK]
    Thu Apr 17 10:27:32 2008 <351612084388524> parsed all headers OK
    Thu Apr 17 10:27:32 2008 <351612084388524> sendResponse() : uref->getStatus() = '200'
    Thu Apr 17 10:27:32 2008 <351612084388524> Going to send headers to the client. Status :200 OK
    Thu Apr 17 10:27:32 2008 <351612084388524> Content Length = 264
    Thu Apr 17 10:27:32 2008 <351612084388524> canRecycle: conn=1 status=200 isKA=1 clen=264 isCTE=0
    Thu Apr 17 10:27:32 2008 <351612084388524> closeConn: pooling for '10.0.162.31/7001'
    Thu Apr 17 10:27:32 2008 <351612084388524> request [crl4/] processed successfully ..................
    Thu Apr 17 10:27:57 2008 <351612084387971> timed out 1 connections, idle for (at least) 25 secs
    Any idea that help me?

    I had a look into the xlclient.cmd file and went to the JAVA directory which is being used. And did a search for the "cacerts" and found out that there is a file named cacerts in the JAVA_HOME/jre/lib/security folder over there.
    But how does that relate to the problem of running the keytool command successfully at the right place (OIM_DC_HOME) ?
    Any hints Kevin....
    Thanks,
    - oidm.

  • Secure Communication between SAP R/3 and SAP portal(WAS Java)

    Hi All,
       We have a requirement where client says ,there needs to be a  SSL tunnel established between SAP R/3 and Portal(through ITS) to access R/3 through portal
    Do we have to use SSL for that or SNC?I heard SNC is a mechanism which have to be used here since it uses DIAG protocol to connect but not Http.Is it true?Kindly give some more ideas on this.
    Other thing is to do this they need to open a port between for using Firewall.Can you guide which SAP port has to be open for this connection?
    Thanks In Advance
    Regards
    Rani A

    Hi Rani,
    what the ITS Admin is, is explained in the docs to the <a href="http://help.sap.com/saphelp_nw04/helpdata/en/44/28611e0bd26493e10000000a1553f7/frameset.htm">ITS Admin Tool</a>. This also includes how to access it.
    Usually specifiying the ABAP backend is done by maintaining the <a href="http://help.sap.com/saphelp_nw04/helpdata/en/44/2b67fe369b060ae10000000a155369/frameset.htm">Global Service File Parameters</a>.
    The <a href="http://help.sap.com/saphelp_nw04/helpdata/en/44/2aa8081a3a060ae10000000a155369/frameset.htm">SNC configuration</a> is part of the <a href="http://help.sap.com/saphelp_nw04/helpdata/en/44/2a95a61a3a060ae10000000a155369/frameset.htm">Security Configuration</a> and also done in the ADM instance of the ITS.
    Regards,
    Patrick

  • Communicating between Weblogic 8.1 and Weblogic 10.3

    Hi,
    I have a requirement where in I need to access Queues in Weblogic 10.3 from Weblogic 8.1 and viceversa.
    Weblogic 8.1 :
    This has a proxy/web application that needs to put request to a Queue exposed in weblogic 10.3
    And will again poll for a Response Queue in weblogic 10.3
    Is it feasible, knowing the fact that jdk version in 8.1 is 1.4 & Jdk version is 1.6 in 8.1 ?
    Can we lookup for Queue defined in 8.1 in Weblogic 10.3 ? Can we use JMS adapter in 10.3 for acheiving this.
    Any help is greatly appreciated.
    Thanks !!

    Avoid using Message Bridges to receive messages.
    See the best practice: http://download.oracle.com/docs/cd/E15051_01/wls/docs103/jms/interop.html#wp1009272
    Q. When should I avoid using a messaging bridge?
    A. Other methods are preferred in the following situations:
        * Receiving from a remote destination—use a message driven EJB or implement a client consumer directly.
        * Sending messages to a local destination—send directly to the local destination.
        * Environment with low tolerance for message latency. Messaging Bridges increase latency and may lower throughput. Messaging bridges increase latency for messages as they introduce an extra destination in the message path and may lower throughput because they forward messages using a single thread.
        * Forward messages between WebLogic 9.0 domains—Use WebLogic Store-and-Forward.

  • Secure Communication between SharePoint and SQL

    What are the options of securing the communication between the SharePoint Server and SQL Server?
    Is the Kerberos one of the options?  Any instructions on how to set it up?

    Kerberos isn't a way of securing communication. It is a way to authenticate.
    If you want to communicate securely then you need to use something like IPSec, see here for a guide:
    http://technet.microsoft.com/en-us/library/ms189067%28v=sql.105%29.aspx
    Have a look here for guidance on how to harden SQL for SharePoint:
    http://technet.microsoft.com/en-us/library/ff607733%28v=office.15%29.aspx

  • How do I set my firewall settings in Avasti to allow communications between my HP 8600 and my comput

    How do I set my firewall settings in Avasti to allow communications between my HP 8600 and my computer

    Something to Consider:
    If you are talking about "Avast!" Security Software, either the free or the paid version, the following may apply to you:
    There are three main levels of Security in the Avast! software:  Home, Work, and Public
    Home is the setting many people use when "at home", that is, connected to the home network.  The home network is sometimes defined as the "192.168" network:  these are the computers and printers that you have and use in your home environment.  The network is (most usually) private and (should be) secured with with a passphrase at your router.  The Avast! Software sees the "Home" network as a "safe" environment:  devices connected within the "Home" network are allowed to "talk" (communicate) with one another without undue restrictions.
    Work is the next setting.  The software places some restrictions on this level of communication.  Home users can certainly use this setting -- in many (most) cases, the "Work" setting is a solution that provides for communication and a bit more security for the home network and its devices.
    Public is the strictest setting and is meant to keep your computer safe in a public place:  the library, coffee shop, on a street corner.  Outside "prying eyes" are prevented from peeping and outside communications are restricted.
    If you have set (or left) your Avast! software set to Public, or even Work (and you do not know how to handle the restrictions), then you may have simply locked out the communication between the printer and the computer(s) on your home network.
    Open your Avast! Software and set the security level to either "Home" or "Work".
    You can find out more about how to use the software settings at the Avast! website.
    Advanced Users Only - You will  know if you changed the Rules... this is not something one does by accident.
    If you have changed the rules within the settings, you may have locked yourself out.  Make sure you have both "in" and "out" traffic settings adjusted correctly for each rule you change / adapt / add.
    Kind Regards,
    Dragon-Fur

  • Encrypt communication between SharePoint Web App and SSRS

    Hi
    I have SharePoint 2010 in multi server farm. The SharePoint web app has SSL enabled. The Reporting Server (SSRS) is http URL.
    So when the Report Viewer web part is used, the communication between SharePoint web server and SharePoint Reporting Server is unsecured. The existing SSL has hard coded hostnames and for business reasons we prefer not to modify it.
    Does anyone know how can I make that communication secured? Do I need to apply new SSL for SP Reporting Services? Is there any other option?

    This should get you off and running on SSL
    http://technet.microsoft.com/en-us/library/ms345223(SQL.100).aspx
    and if you haven't go SQL on SSL - ->
    http://technet.microsoft.com/en-us/library/ms189067(v=sql.100).aspx
    Stacy Anothersharepointblog.blogspot.com

  • Communication between PC/RM Backend and ERP System

    Hi,
    Is it possible to have communication between PC/RM Backend and ERP System by cresting RFCUSER with user type communications data instead of Dialog user.
    Because of audit policy , none of DIALOG user should have SAP_ALL profile.
    Is there a option to set up communications  between PC/RM Backend and ERP System without a Dialog user setting.
    Pravin

    Hi Pravin,
       You are right and the user should be always communication or system. GRC AC allows for the user to be communication or system. Can you try with PC/RM RFC user and see if it works? It should work
    Alpesh

  • Email links out of Practice Fusion are not active (as they are in IE), which they say is a problem with "something lost in the communication between the Flash engine and the browser". Does anyone have experience with this?

    This is a medical records system, cloud based. I use Firefox to get into the system, but any browser would work. Other than this problem, Firefox works fine (better than IE, in my opinion).
    Patient demographics include their email, which is hyperlinked and should go right to Outlook (my default email program). This works in IE, but nothing happens on the click when using Firefox as the browser.
    I queried Practice Fusion, which replied: In regards to your previous question about the email hyperlink in the patient information, it looks this is not something that can be fixed on our end right now. It is the web browsers' responsibility to handle these types of links, and there seems to be something lost in the communication between the Flash engine and the browser. I apologize for any inconvenience.
    Thanks for any help anyone can provide.

    See if this helps you:
    http://support.mozilla.com/en-US/kb/Changing+the+e-mail+program+used+by+Firefox

  • HT204387 which profile allows communication between iOS 4/later and Bluetooth Health Monitor(such as Fetal Heart Rate/Motion/respiration etc. )

    which profile allows communication between iOS 4/later and Bluetooth Health Monitor(such as Fetal Heart Rate/Motion/respiration etc. )

    Thank you!
    We are developing a monitor with Bluetooth 4.0 moudle, also programing an iOS App for this wireless monitor. We want to transfer the monitor data to iphone/ipad(which installed the App) through bluetooth.
    As you know, many bluetooth device are not allowed to connect to iphone/ipad through bluetooth. So I'd like to know that which of the iOS supported bluetooth profies should I use when programing, to ensure the monitor can connect to the Apple device and upload data. Of course, if they can connect successfully, both of the monitor and Apple device would be acknowledged "connected".

  • Communication between two jvm (client and server)

    Hi ,
       I want to access the UME service of the SAP J2EE Container using a stanalone client application.
    So the client would be running on remote JVM.
    Here we use the JNDI service to communicate between the client and server.
    p.put(Context.INITIAL_CONTEXT_FACTORY,"com.sap.engine.services.jndi.InitialContextFactoryImpl");
                        p.put(Context.PROVIDER_URL, providerURL.trim());
                        p.put(Context.SECURITY_PRINCIPAL, securityPrinciple.trim());
                        p.put(Context.SECURITY_CREDENTIALS, securityCredentials.trim());
                        Context ctx = (Context) new InitialContext(p);
                        Object objRef = ctx.lookup(ejbName.trim());
    I want to know that is the communication between the client and server secured in this scenario
    Best Regards
    Manoj

    Okay, the client and server VMs are different implementations of the Hotspot engine. Hotspot basically takes the Java bytecode from your .class files and turns it into native machine instructions at runtime. (The optimizations are actually much more complex than that, but that's the basic concept.)
    The client VM is so named because it's designed to be used for GUI-type applications interacting with the user. It is designed to have a quicker startup and smaller memory footprint.
    The server VM uses more memory and is typically slower at starting up than the client VM, but can often perform ridiculously fast. This of course depends completely on the particular code being run, and you should probably profile and see which VM works better for your application.
    Some interesting optimizations are performed by the 1.4.1 server VM, such as: removal of array-bounds checks (when it determines that the index can't become out of bounds), inlining of methods, and more.
    Here is a link to more info if you're interested:
    http://java.sun.com/products/hotspot/docs/whitepaper/Java_HotSpot_WP_Final_4_30_01.html

  • Weblogic 8.0 and IIS 5.0 plug in issue

    hi,
    I have a computer with Windows 2000 server and IIS 5.0 installed.
    I am trying to open a connection with a Weblogic Server 8 SP3 on another machine.
    My iisproxy.dll and iisproxy.ini
    are on the folder: C:\WINNT\system32\inetsrv
    iisproxy.ini :
    WlForwardPath=/IhmActivation
    Debug=ALL
    WebLogicHost=toto
    WebLogicPort=49162
    WLLogFile=C:\iisproxy3.log
    I have configured iisproxy.dll in IIS 5.0
    Based on what I entered in my configuration file iisproxy.ini, if I type the URL:
    http://localhost/IhmActivation/here.do
    it should point to
    http://toto:49162/IhmActivation/here.do
    I get a 401 message:
    Going to send headers to the client. Status :401 Unauthorized xxx
    The login and password are ok.
    So I do not know where the problem comes from.
    Does anyone have an idea please ?
    Thanks for your help.

    Since you are attempting to proxy by path you need to configure the iisforward.dll as stated in step #3 here:
    http://e-docs.bea.com/wls/docs81/plugins/isapi.html#100382

  • Differece Between Weblogic Portal domian and Weblogic App Domain

    Hi
    Is there any difference between the Weblogic Portal domain and WebLogic App Domain
    How to create an Weblogic Portal domain and configure oracle database with tht
    Thanks

    whats a weblogic App domain? do you mean a workshop or server domain?
    Yes theres a difference, these domains wont have Portal needed resources configured
    Use the domain configuration wizard and you can create a new Portal domain or extend an existing one to add all the portal features.. look at edocs.bea.com for more info

  • EJB communication between weblogic and websphere

    Hello:
    I have weblogic 7.1 instance running in machine A and websphere running in machine B. I want to make a call to the ejb deployed from weblogic to websphere. Any experience in this would be very helpful. Or pl. post the procedure.
    Thx in advance.

    I don't think that there is any magic here, although I've never tried it.
    All you need is the compiled EJBHome and EJBObject interfaces in the
    classpath of the calling EJB, get an InitialContext in the JNDI namespace of
    the target EJB container using the name of the JNDI InitialContext Factory,
    do a lookup on the bean making sure to do a PortableRemoteObject.narrow when
    you are casting the Home stub with the vendor specific version of
    PortableRemoteObject(and that may be the real trick), call the appropriate
    create method, and you are rolling.
    I guess the question becomes how to make sure that when you are calling
    PortableRemoteObject.narrow on the Home stub, that you get the vendor
    specific version for the EJB container and JNDI namespace from which you are
    doing the lookup.
    I guess the answer is, I'm guessing. Have you tried it?
    bill
    "nebs om" <[email protected]> wrote in message
    news:30035468.1103738722864.JavaMail.root@jserv5...
    Hello:
    I have weblogic 7.1 instance running in machine A and websphere runningin machine B. I want to make a call to the ejb deployed from weblogic to
    websphere. Any experience in this would be very helpful. Or pl. post the
    procedure.
    >
    Thx in advance.

  • What is the difference between WebLogic Server users and Portal users

    Hi All
    What is the difference between users created in the WebLogic server and those
    created from the webLogic Portal Admin console.
    - leo

    Hi Leo,
    The WebLogic server console allows you to create users in the File realm (
    http://e-docs.bea.com/wls/docs61/adminguide/cnfgsec.html#1057106 , "Defining
    Users" ).
    The WebLogic Portal Admin console creates Portal users in the alternate security
    realm that was written to store user/password in the Portal schema. This realm is
    com.bea.p13n.security.realm.RDBMSRealm. See the javadoc for RDBMSRealm at (
    http://edocs.bea.com/wlp/docs40/javadoc/wlp/com/bea/p13n/security/realm/RDBMSRealm.html
    For information on alternate security realms see
    http://e-docs.bea.com/wls/docs61/security/prog.html#1041025 , "Writing a Custom
    Security Realm".
    For information on the File realm see
    http://e-docs.bea.com/wls/docs61/ConsoleHelp/security.html , "Security" and also
    search the WLS 6.1 docs for "File realm" for lots of other references.
    Leo wrote:
    Hi All
    What is the difference between users created in the WebLogic server and those
    created from the webLogic Portal Admin console.
    - leo--
    Ture Hoefner
    BEA Systems, Inc.
    2590 Pearl St.
    Suite 110
    Boulder, CO 80302
    www.bea.com

Maybe you are looking for

  • Accessing Request Parameters from ActionRequest with form/multipart

    Hi, I have a weblogic producer portlet which has form enctype="multipart/form-data". Now although I have correctly set the action according to JSR 168 standards like: <form name="Checkin" method="POST" enctype="multipart/form-data" action='<abcportle

  • To upgrade or buy new mac.

    i need to get some opinion from u guys out there. i'm using an 12.1" ibook g4 512ram for 2 years. Things are fine but lately i feels it is getting slow (maybe the softwares are getting more demanding). I thinking should i up the ram to 1.5 and add in

  • Why is iTunes using 2gb of my ram?

    I noticed that my computer was being really slow and sluggish, so I opened the activity monitor and I saw that iTunes was using 2gb of ram! I didn't have anything playing, downloading, etc. It was just open in the background. I'm running OSX 10.8.5.

  • Website Gallery Issue

    I built this website, and she can't view the image gallery viewer on her computer. It's an older PC laptop. And she's had all of her friends try it and they get a little arrow in the bottom left hand corner that says "Done With Errors" or something,

  • MI Client Sync Error

    Hi Experts, I am trying to Synchronize MI Client to get CRM Sales Opportunities . It is showing me Synchronization Completed But Sales opportunities are not downloaded on MI Client. The following Trace has been Created During Sync.  Can you please he