Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
SOLVED

Mutual SSL in AEM

Avatar

Level 4

In our current architecture we have our AEM author on JBoss server. The primary reason to do that was because AEM didn't provide capability for establishing Mutual SSL. Would want to know if in newer versions of AEM 6.3 or 6.5, can we establish Mutual SSL. If yes, can you please point to some documentation. This is required as we have to connect to services outside AEM. 

1 Accepted Solution

Avatar

Correct answer by
Employee

Personally -- I'd avoid Mutual SSL if possible.

 

We have encountered very difficult-to-diagnose-and-troubleshoot edge cases where Java will incorrectly select the wrong certificate.

 

Yet unresolved Java bug : JDK-8199440

https://bugs.java.com/bugdatabase/view_bug.do?bug_id=JDK-8199440

 

View solution in original post

5 Replies

Avatar

Level 4
Hi, I am not looking for configuraing replication, this I have got. I am looking for Mutual SSL(MSSL) for consuming rest endpoints of other services.

Avatar

Correct answer by
Employee

Personally -- I'd avoid Mutual SSL if possible.

 

We have encountered very difficult-to-diagnose-and-troubleshoot edge cases where Java will incorrectly select the wrong certificate.

 

Yet unresolved Java bug : JDK-8199440

https://bugs.java.com/bugdatabase/view_bug.do?bug_id=JDK-8199440

 

Avatar

Level 4
But this bug talks about JDK bug specifically do you have any use case for Mutual SSL.

Avatar

Employee
what I'm saying is -- Adobe Customer Care has seen incidents with organizations who use Mutual SSL (always seems to be banks) where they encounter odd edge case scenarios where the Java JVM selects the wrong alias during handshake and this is leads to failed SSL connections.