Topic
  • 3 replies
  • Latest Post - ‏2013-01-04T17:39:08Z by kenhygh
smashyrahul
smashyrahul
396 Posts

Pinned topic Fetching the certificate from the incoming request

‏2013-01-04T15:09:30Z |
Hello Experts,

I want to create an AAA action that will fetch the certificate from the incoming HTTPS request and create a SOAP message (using an AAA action). Any idea how can we implemet this in DataPower?

Any suggestions would be appreciated.

Thanks
Rahul
Updated on 2013-01-04T17:39:08Z at 2013-01-04T17:39:08Z by kenhygh
  • kenhygh
    kenhygh
    1606 Posts

    Re: Fetching the certificate from the incoming request

    ‏2013-01-04T15:20:02Z  
    Not sure what you're trying to do.

    Do you want to do Authentication/Authorization using the certificate?

    You say you want to create a SOAP message, from what?

    Ken
  • smashyrahul
    smashyrahul
    396 Posts

    Re: Fetching the certificate from the incoming request

    ‏2013-01-04T15:36:15Z  
    • kenhygh
    • ‏2013-01-04T15:20:02Z
    Not sure what you're trying to do.

    Do you want to do Authentication/Authorization using the certificate?

    You say you want to create a SOAP message, from what?

    Ken
    Yes, external user will be sending the request using certificate. Authentication will be performed using certificate, so we would need to extract the certificate info and send it to some other tool ( say webseal or TAM) which will do the authentication and authorization. The request to Webseal/TAM will be sent via a SOAP protocol.

    hence I am trying do this.

    Regards,
    Rahul
  • kenhygh
    kenhygh
    1606 Posts

    Re: Fetching the certificate from the incoming request

    ‏2013-01-04T17:39:08Z  
    Yes, external user will be sending the request using certificate. Authentication will be performed using certificate, so we would need to extract the certificate info and send it to some other tool ( say webseal or TAM) which will do the authentication and authorization. The request to Webseal/TAM will be sent via a SOAP protocol.

    hence I am trying do this.

    Regards,
    Rahul
    Rahul,
    Have you tried this using the standard AAA action? there's built-in support for getting certificate info (like the DN) and forwarding to TAM for authentication.

    Ken