IDP Requesting client Certificate

Cantor, Scott cantor.2 at osu.edu
Tue May 20 10:21:05 EDT 2014


On 5/20/14, 3:09 PM, "Kobi Seviliya" <kobi at outbrain.com> wrote:

>Jetty is listening on port 8443 and i use ipchaines to redirect port 443
>to 8443 ...

Then that's the problem.

>am i missing something here ?

You've configured the trust manager plugin designed to be used on port
8443 for SOAP traffic and it's now affecting requests from the browser.

If you want to use ipchains like that instead of just doing setuid, then
you should move the SOAP connector to 9443 or some other port, and leave
8443 unmolested by the plugin.

Or just don't support back channel requests/profiles if you don't need
them.

-- Scott




More information about the users mailing list