Bookshelf Home | Contents | Index | PDF |
Siebel Security Guide > Communications and Data Encryption > Configuring SSL Mutual AuthenticationMutual authentication is a process in which a connection between two parties is established only after each party has authenticated the other. In SSL mutual authentication, the client is authenticated to the server and the server is authenticated to the client during the SSL handshake, using digital certificates issued by certificate authorities. Siebel Business Applications support server authentication and, in the current release, client authentication is also supported for SSL-based communications using the EAI HTTP Transport business service, and for workflows or outbound Web service calls that call the EAI HTTP Transport business service. If you choose to enable client authentication, the Siebel Server presents a client certificate to an external Web server by supplying values for the HTTPCertSerialNo and HTTPCertAuthority EAI HTTP Transport parameters. This task is a step in Process of Configuring Secure Communications. The following procedure describes how to configure client authentication using the EAI HTTP Transport business service. To configure client authentication using EAI HTTP Transport
Using Null Ciphers on UNIXIf you configure your Web server for client authentication using SSL 3.0, and if your Siebel Server is on a UNIX operating system, you can encounter an error (Error 12157) during the SSL handshake procedure if you have enabled the NULL encryption cipher. To use the NULL cipher on the Web server, you must disable all other ciphers. For information on disabling ciphers in the Mainsoft MainWin registry using the X-Windows regedit utility, and for general information on resolving errors that can occur when using the EAI HTTP Transport business service with SSL, see 762002.1 (Article ID) on My Oracle Support. |
Siebel Security Guide | Copyright © 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices. | |