How to configure the https connector to serve multiple applications?

Solution Verified - Updated -

Environment

  • JBoss Enterprise Application Platform (EAP) all versions
  • JBoss Enterprise Web Server (EWS)
    • 1.X
    • 2.0

Issue

  • How to use port 8443 to handle multiple secure sites in JBoss? Each site with a different certificate.

Resolution

The same https connector can not be configured with multiple certificates. The same connector can be used if all applications authenticate against the same certificate. Note that most of client browsers compare the server domain name with the domain name listed in the certificate and it can cause a warning to the client.
To serve different applications under the same IP and port with SSL, use Apache with Virtual Hosts and SNI extention in front of JBoss. Each Virtual Host serving their own SSL certificate and using mod_proxy with ProxyPass statement to route the requests to JBoss. Consult the article Does JBoss EWS support Server Name Indication? for EWS versions that support SNI.

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.