views:

43

answers:

0

In my project, we are opening Outlook webmail 2003 in a iframe. Recently we configured weblogic for 2 way SSL. The 2 way SSL configuration is working fine and SSL handshake between Client and Server is working in normal case.

But after user clicks on Webmail log out button. Page not found error is displayed for all the subsequent requests. I checked for weblogic logs for any error following are some warring message that I found in the logs.

BAD_CERTIFICATE alert was received from .. Check the peer to determine why it rejected the certificate chain (trusted CA configuration, hostname verification). SSL debug tracing may be required to determine the exact reason the certificate was rejected.

Certificate chain received from .. was incomplete.

NO_CERTIFICATE alert was received from .. Verify the SSL configuration has a proper SSL certificate chain and private key specified.

We are using weblogic 10.3 and IE6 for browser.

Update: I tested the whole senario in IE with ieHTTPHeader software to analyse the request and response header. Following is the header for logout request of webmail:

Request

GET /exchange/E.votest2/?Cmd=logoff HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-shockwave-flash, / Accept-Language: en-gb Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) Host: Connection: Keep-Alive Cookie: sessionid=57c3e958-e869-4a85-908a-191bd3f44430:0x809; cadata="23UDrLYutmtwf3sF8H8xw6yiIAzDKAZFWk2O4zJuqUo1CQH9l7QguQJ4l6ecG61ftj41UhA=="

Response

HTTP/1.1 302 Moved Temporarily Location: https:///exchweb/bin/auth/owalogon.asp?url=https://uknthowa.uk.pri.o2.com/exchange/&reason=1 Set-Cookie: sessionid=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT Set-Cookie: cadata=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT Connection: close Content-Length: 0

Requst

GET /exchweb/bin/auth/owalogon.asp?url=https: //HOST/exchange/&reason=1 HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-shockwave-flash, / Accept-Language: en-gb Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) Host: Connection: Keep-Alive

Response

HTTP/1.1 200 OK Cache-Control: no-cache Content-Length: 14925 Content-Type: text/html Expires: Thu, 12 Aug 2010 14:39:09 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Date: Thu, 12 Aug 2010 14:40:09 GMT

I found one more thing, after loging out of webmail 2003, for all the subsequent request no request is generated by the browser it directly shows Page not Found error. So no request is sent to weblogic server.