Errors that you posted were from proxy server that couldn't connect to
the backend, so:
1. It would be good to check log files on backend whatever it is.
2.. Also it would be a good idea to install browser ot the proxy
server (or connect computer with browser to that network) and check
direct co
Yeah, but if I try GETting from the proxied server from the proxy using a
browser, and display the client certificate, the request succeeds.
Please notice that in the log I've posted earlier, it appears that some
unexpected error occurs, not an error with a known code, such as "invalid
certific
If it used to work and now doesn't most probably that there is an
expired certificate somewhere. It could be client certificate that
proxy uses to authenticate on the backend server or root CA's
certificate that signed that client's certificate.
On 12/24/06, Shai Yallin <[EMAIL PROTECTED]> wrote:
This doesn't make sense, since it worked up to 3 weeks ago…
Any idea on how do I make my server trust the remote server?
Should I get the remote server's owner to send me the SERVER's certificate?
Thanks,
Shai Yallin
IT Manager & Developer
LocatioNet Systems Ltd.
Tel:
reason is "no acceptable CA list", which may mean, that your
ReverseProxy dosent trust the CA bound at server:443
read
http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslproxycacertificatefile
Regards
The certificate file is fine. When I perform a get operation from the
proxy server itse
I do not use HTTPS in the backend... the SSL engine is off in the
Virutal Host config.
The certificate file is fine. When I perform a get operation from the
proxy server itself (using a browser), it asks me to present the
certificate. Upon presenting it, I can connect successfully.
I'll try to cla
why do you use HTTPS in Backend, it looks like the backend System also
needs client certificate authentication, there may be something wrong
with your SSLProxyMachineCertificateFile ? try to send a wget request to
the remote server and use SSLProxyMachineCertificateFile, dose wget get
authorize
*snip*
Anyone?
Shai Yallin
IT Manager & Developer
LocatioNet Systems Ltd.
Tel: +972-9-8856451
Fax: +972-9-8856452
Mobile: +972-54-4840868
"...we will be restoring normality just as soon as we are sure what is
normal anyway."
Hi all,
I'm running httpd 2.2.3 on win32 with openssl 0.9.8d as a reverse proxy server.
One of the things this sever needs to do is to act as a reverse proxy for
applications that do not speak SSL, to SSL-only servers.
I have configured the following:
SSLMutex default
SSLRandomSeed startup buil