how to detect certificate with webspeed
- Thread starter biavol
- Start date
RealHeavyDude
Well-Known Member
Which certificate do you mean? There are two types of SSL certificates you can deal with:
The server certificate
This is standard SSL, the server sends its certificate to the client which must have access to the corresponding root certificate in order to authenticate the server. If the client does not have access to the root certificate it will either raise an error/warning (web browser) or reject the connection alltogether (Progress/OpenEdge GUI and WebClient).
The client certificate
The client certificate is not support by many software vendors - one of 'em is Progress. But, if you are running WebSpeed then the client certificate is sent by the browser and authenticated by the WebServer - therefore WebSpeed and Progress as a vendor is not part of the SSL handshake.
HTH, RealHeavyDude.
The server certificate
This is standard SSL, the server sends its certificate to the client which must have access to the corresponding root certificate in order to authenticate the server. If the client does not have access to the root certificate it will either raise an error/warning (web browser) or reject the connection alltogether (Progress/OpenEdge GUI and WebClient).
The client certificate
The client certificate is not support by many software vendors - one of 'em is Progress. But, if you are running WebSpeed then the client certificate is sent by the browser and authenticated by the WebServer - therefore WebSpeed and Progress as a vendor is not part of the SSL handshake.
HTH, RealHeavyDude.
RealHeavyDude
Well-Known Member
From what I know ( others may know more ):
- There is no Progress product available today that supports the client certificate - and, AFAIK, it has not a high priority on their list of things to do ...
- The client certificate checking must be done on the web server. If the client certificate is not accepted by the web server or the client does not send the client certificate, depending on how it's set up, the web sever will refuse the connection attempt. AFAIK there's no way you'll know about that on the WebSpeed broker - since the web server rejected the client.
stevephillips79
New Member
Hi,
There is no Progress product available today that supports the client certificate - &, AFAIK, it has not a high priority on their list of things to do.block everything at your firewall (excluding your desired services from specific servers) and then they don't tunnel/direct connect out through any other means.
Thank you
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Want to get-on Google's first page and loads of traffic to your website? Hire a SEO Specialist from Ocean Groups seo specialist
There is no Progress product available today that supports the client certificate - &, AFAIK, it has not a high priority on their list of things to do.block everything at your firewall (excluding your desired services from specific servers) and then they don't tunnel/direct connect out through any other means.
Thank you
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Want to get-on Google's first page and loads of traffic to your website? Hire a SEO Specialist from Ocean Groups seo specialist