Hello again, In my original posting I overlooked the fact that the server doesn't need to remember the newly generated certificate for the client. It just needs to be able to authenticate the CA for this certificate, which is the server itself.
Knowing this simplifies everything. The authenticating proxy as well as all clients need to be equipped with the certificate of my CA to authenticate each other. The JBoss clusters don't have to know about this at all, as the requests that they accept are already "de-SSL'ed". Cheers, Alex View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3845486#3845486 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3845486 ------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
