Sun Java System Application Server Platform Edition 8.2 Administration Guide

Configuring Mutual Authentication

In mutual authentication, both server and client-side authentication are enabled. To test mutual authentication, a client with a valid certificate must exist. For information on mutual authentication, see the Security chapter of The J2EE 1.4 Tutorial at http://java.sun.com/j2ee/1.4/docs/tutorial/doc/index.html.

Enabling Mutual SSL Authentication in an Application

To enable mutual authentication for a specific application, use deploytool to set the method of authentication to Client-Certificate. For more information about using deploytool, refer to the Security chapter of The J2EE 1.4 Tutorial at http://java.sun.com/j2ee/1.4/docs/tutorial/doc/index.html.

ProcedureTo enable mutual authentication for all the applications

The Application Server uses the certificate realm for HTTPS authentication.

  1. In the Admin Console tree component, expand the Configuration node.

  2. Expand the Security node.

  3. Expand the Realms node.

  4. Select the certificate realm.

  5. Click the Add Property button.

    1. In the Name field, enter clientAuth.

    2. In the Value field, enter true.

  6. Click Save.

  7. Restart the Application Server if Restart Required displays in the console.

    After restarting the server, client authentication is required for all applications that use the certificate realm.