Reputation: 1
Do I need to send the client certificate to another server even if I configured my server with SSL
I am having a doubt regarding SSL certificate. We've some third party vendor who has exposed their services but asks for SSL certifcate to be attached in request.
Our java code is deployed on Weblogic server. Now we have configured SSL certificate (complete chain) in WLS using keystore. it's done on port 9003. Now when I connect with putty to my WLS over SSH and try to curl the test url of the third party vendor, I am getting un authorized error.
Upon inquiring the same to third party vendor, they said I must send my certificate with the request.
Now my question is, if my server is configured with the SSL certificate, do I need to attach certificate with every request ?
Upvotes: 0
Views: 54
Answers (1)
Reputation: 123531
The certificate which is used to authenticate your server against some browser and the certificate which is used to authenticate yourself as a client against another server are unrelated. While in some cases they might be the same in other cases they are different. In other words: you need to attach the client certificate which is required by the other server with each request. curl will not magically do this for you.
Upvotes: 1
Related Questions
- Modifiying Weblogic Server to use TLS
- Client Certificate using Weblogic
- enabling SSL on weblogic
- weblogic client certificate authentication per webapp module
- Mutual authentication using pkcs12 certificate in java client with weblogic server
- Two way ssl with Tomcat as client to weblogic
- WebLogic Server - SSL - Multiple certificates
- Web service client application on weblogic to invoke web service
- Is the Trusted Key Store necessary for One-Way SSL
- weblogic as ssl client (single side auth)