I am still in the process of learning DataPower.
I have a scenario like this :
External Web Service <----------HTTP/SSL/443 ---- DATAPOWER in the DMZ <---------HTTP/80--------- Back-End Server to serve as a client
(typically, i work with the traffic in the opposition direction)
1/ Request to the external REST service going outbound through the Datapower
2/ Request stops at the DataPower
3/ DataPower sends a SSL-enabled HTTP request outgoing to an external WS .
The External WS has to be able to recognize and authenticate the DP's certificate (say, "myDP.pem"). Here's my setup:
1/ Multi GateWay Protocol
2/ BackendURL is set to the external WS URL (it's "backend", but actually going outbound)
3/ Configure User Agent in XML Manager : Here's the part that I am still confused about . HOw do I configure such that DP will send its cert to the external service ?
Is it configured via SSL Proxy Profile Policy tab -> SSL Proxy Profile :
-- Assume it's a FORWARD Direction
-- Configure FORWARD client crypto profile with Identification Credentials ?
I read from the book that Identification Credentials is optional for SSL going outbound ? If it's optional, where do I actually specify the "DP cert" ?
PLEASE ADVISE or poitn me to the correct lesson the net to show me how to do this correctly.