Configuring iplanet 6.0 Web Server For SSL and non-ssl Redirect



Similar documents
How To Send Mail From A Macbook Access To A Pc Or Ipad With A Password Protected Address (Monroe Access) On A Pc (For Macbook) Or Ipa (For Ipa) On Pc Or Macbook (For

Windows Live Mail Setup Guide

Update Instructions

c. Write a JavaScript statement to print out as an alert box the value of the third Radio button (whether or not selected) in the second form.

Outlook Express POP Instructions - Bloomsburg University Students

BASIC CLASSWEB.LINK INSTALLATION MANUAL

Internet Technologies

Update Instructions

SETUP SSL IN SHAREPOINT 2013 (USING SELF-SIGNED CERTIFICATE)

This information is provided for informational purposes only.

StarterPlus Mailbox Software Setup Guide

How to Set Up Your. Account

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

SETTING UP REMOTE ACCESS ON EYEMAX PC BASED DVR.

Installation Procedure SSL Certificates in IIS 7

2- Forms and JavaScript Course: Developing web- based applica<ons

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

700 Fox Glen Barrington, Illinois ph: [847] fx: [847]

Configuring the NetBackup 7.7 Cloud Connector for use with StorReduce

SSL Enablement of the DB2 Web Query for System i Server

Further web design: HTML forms

Insight Student for Chromebooks - Auto Configuration

Update Instructions

How To Create A Mailbox In Windows Mail On A Pc Or Mac Or Ipad (For A Mac)

Setup Guide. network support pc repairs web design graphic design Internet services spam filtering hosting sales programming

QQ WebAgent Quick Start Guide

USING SSL/TLS WITH TERMINAL EMULATION

MadCap Software. Upgrading Guide. Pulse

Open Thunderbird. To set up an account in Thunderbird, from the Tools menu select Account Settings; choose account; then click Next.

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

Intell-a-Keeper Reporting System Technical Programming Guide. Tracking your Bookings without going Nuts!

Getting started with IMAP for Aggi What is IMAP?

Novell Identity Manager

ECA IIS Instructions. January 2005

Set Up Setup with Microsoft Outlook 2007 using POP3

Trend Micro PC-cillin Internet Security 2006

Microsoft Outlook 2010

How to Pop to Outlook

Migration User Guides: The Console Application Setup Guide

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings. Securepoint Security System Version 2007nx

<option> eggs </option> <option> cheese </option> </select> </p> </form>

isupplier PORTAL ACCESS SYSTEM REQUIREMENTS

Client Configuration Secure Socket Layer. Information Technology Services 2010

HOW TO CREATE AN HTML5 JEOPARDY- STYLE GAME IN CAPTIVATE

HTML Forms and CONTROLS

SBBWU PROXY SETTING IT CENTRE How to Set a Proxy Server in All Major Internet Browsers for Windows

Update Instructions

Downloading Driver Files

CS412 Interactive Lab Creating a Simple Web Form

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on. User Information

HRC Advanced Citrix Troubleshooting Guide. Remove all Citrix Instances from the Registry

Using the ISCR FTP Program

XCM Internet Explorer Settings

Configuring IBM HTTP Server as a Reverse Proxy Server for SAS 9.3 Web Applications Deployed on IBM WebSphere Application Server

BusinessObjects Enterprise XI Release 2

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

ibaan ERP 5.2a Configuration Guide for ibaan ERP Windows Client

Upgrading User-ID. Tech Note PAN-OS , Palo Alto Networks, Inc.

WHITE PAPER Citrix Secure Gateway Startup Guide

CHARTER BUSINESS custom hosting faqs 2010 INTERNET. Q. How do I access my ? Q. How do I change or reset a password for an account?

Microsoft Expression Web

Remote Vision(Java RDP Client) User Manual

Generating an Apple Enterprise MDM Certificate

Spam Marshall SpamWall Step-by-Step Installation Guide for Exchange 5.5

Follow these steps to configure Outlook Express to access your Staffmail account:

Upload Center Forms. Contents. Defining Forms 2. Form Options 5. Applying Forms 6. Processing The Data 6. Maxum Development Corp.

Windows Mail POP Instructions - Bloomsburg University Students

Craig Carpenter MCT. MCSE, MCSA

Install MS SQL Server 2012 Express Edition

Configuring Outlook 2013 For IMAP Connections

Install and Configure Oracle Outlook Connector

Enable SSL for Apollo 2015

OrgChart Now SSL Certificate Installation. OfficeWork Software LLC

Here are the steps to configure Outlook Express for use with Salmar's Zimbra server. Select "Tools" and then "Accounts from the pull down menu.

GreenEye Monitor Setup Guide V1.0 Brultech Research Inc.

SSL VPN Setup for Windows

Immersion Day. Creating an Elastic Load Balancer. Rev

Viewing Form Results

E M A I L S E T - U P G U I D E

Making an online form in Serif WebPlus

Secure Outgoing Mail (SMTP) Setup Guide

Quick Start Guide. Installation and Setup

Central Administration User Guide

Salesforce Integration

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

UBS KeyLink Quick reference WEB Installation Guide

NetSpective Certificate Guide

How to move to your account with MAC Mail

OUTLOOK EXPRESS ACCOUNT SETUP FOR USE WITH ELLIPSE ADVANCED SPAM FILTER

Hello World RESTful web service tutorial

Neoteris IVE Integration Guide

Standard Mailbox Software Setup Guide

Configuring Thunderbird for Flinders Mail at home.

HOW TO CONFIGURE PASS-THRU PROXY FOR ORACLE APPLICATIONS

Configuring Outlook 2011 for Mac with Google Mail

Configuring Apache HTTP Server as a Reverse Proxy Server for SAS 9.3 Web Applications Deployed on Oracle WebLogic Server

SysAid Remote Discovery Tool

MICROSOFT OFFICE 365 EXCHANGE ONLINE CLOUD

MY HELPDESK - END-USER CONSOLE...

Transcription:

Introduction Configuring iplanet 6.0 Web Server For SSL and non-ssl Redirect This document describes the process for configuring an iplanet web server for the following situation: Require that clients have SSL client certificates If a certificate is not valid or not available, redirect the client to a non SSL portion of the server for further processing This method uses virtual servers to allow the creation of both an SSL and non SSL portion of the web server. Configuration Process The following sections describe the process to create two virtual servers, one enabled with SSL and one without. A note on my configuration: In my configuration, my server started as SSL and I was trying to add a non SSL virtual server to it. Your configuration will vary appropriately depending on which you want to do, but your end result should be having two listen sockets and two virtual servers, one with security on and on port 443, and the other with security off and on port 80. Obtain and Install a Certificate In order to allow SSL connections, the web server must have a private key and digital certificate. To obtain a certificate, you should open the management console for the server, select the Security tab, and choose Request a Certificate from the left side menu. This process will create your certificate request. Once your request is completed, you will need to send it to a certificate authority so the certificate can be generated. The response should contain your server s certificate, which you install using the management console. Select the Security tab and choose Install Certificate, being sure to select the radio button labeling that the certificate is for This Server. Create Listen Sockets In the management console for the server, choose the Preferences tab and choose Add Listen Socket. You will see a screen similar to the following (except blank). You should fill in the values similar to what is shown to add your second listen socket. See the notes below the picture.

Add Virtual Server Class and Virtual Server In the management console, select the Virtual Server Class tab. You will see a screen similar to the following: 2

You will add a virtual server class by clicking Add Class on the left, and filling in the form similar to the following: 3

Once that is completed, your Manage Classes view will look something like this: Click the name of the new class to begin to add the virtual server. You will see the following: 4

Click the Add Virtual Server link to add a virtual server under your virtual server class. You will see the following: Configure a name for the server, and choose your new listen socket as appropriate. (If your second server is the SSL server, you would reverse the choice for the connections shown.) Now that your virtual server is created, there is just one more step. You must bind the listen socket to the virtual server. Binding Listen Socket to Virtual Server To bind the new listen socket to the new virtual server, you should go back to the Preferences tab in the management console. You should then choose Edit Listen Sockets. You will be presented with your two listen sockets as shown below: 5

Depending on which listen socket you ve added (in my case it s the non secure port 80 socket), click the corresponding Groups button next to the new listen socket. You will see a screen similar to the following: 6

Next to the Edit option, you should select the name of the virtual server that will be the default for that listen socket (just by highlighting it) and then clicking the OK button. This will bind the new listen socket to that virtual server. Setting up Redirection This can be done in any number of ways, the method I chose was quite simplistic. First choose the Virtual Server Class tab. Click on the name of your SSL server class (not the server, the class!). You will see a screen similar to the following: Click the Content Mgmt tab and choose the Error Responses link on the left. You will see a page similar to the following: 7

I caused all the errors to load a file that contained an HTML redirection. The HTML file redirected to my non secure interface. The contents of that file are as follows: <HTML> <HEAD> <TITLE>Redirecting now</title> <META HTTP-EQUIV="REFRESH" CONTENT="0; URL=http://www.geminisecurity.com/"> </HEAD> <BODY> Please stand by for redirection... </BODY> </HTML> See section 0 below for another example that works better with the Internet Explorer browser. Internet Explorer Friendly Error Messages Unfortunately, the default installation of Internet Explorer causes the redirection to not occur. The reason for this is the HTTP status code that is returned with the error page. Internet Explorer (by default) is configured to return friendly error messages, so instead of getting the page with a redirection you might see something similar to the following: 8

The easy solution to prevent this from happening and to actually follow your redirection is to configure as follows: Tools > Internet Options > Advanced Tab > Uncheck Show Friendly Error Messages. Unfortunately since this is a default setting, this may not be easy to do. We have found through research that Internet Explorer clients will only return a friendly error message if the returned error page is smaller than some threshold size, which is specified in a registry setting. Information about that registry setting and threshold size can be found here: http://support.microsoft.com/kb/218155/en US/ Most error thresholds are either 256 or 512 bytes. So, when you create your redirection page, ensure that it is longer than 512 bytes. If the page downloaded is greater than the threshold specified in the registry, the Internet Explorer browser will render the redirection page rather than showing the friendly error message. This will allow the redirection to occur properly. The following page has a sample HTML file which performs a redirection and is greater than 512 bytes. 9

<HTML> <HEAD> <TITLE>Redirecting now</title> <META HTTP-EQUIV="REFRESH" CONTENT="0; URL=http://www.geminisecurity.com/"> </HEAD> <BODY> Please stand by for redirection... <form> <input type="hidden" name="extra_space" value="this extra space is to prevent internet explorer browsers from showing friendly error messages. 0123456789"> </form> </BODY> </HTML> 10

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information