| Author |
WebSphere Portal 5.0 and SSL
|
|
| dbthomson@gov.pe.ca 2004-02-13, 12:33 am |
| I've followed the instructions for setting up Login protection for
Portal using SSL.
When I click the Login button I'm redirected to a secure page and my
userid and password are encrypted between the browser and the portal
server.
My problem occurs after I get logged in, I receive a message stating
that the page contains secure and unsecure information and do I want to
display the unsecure information. As far as I can determine the
unsecure information is graphics.
I don't want my users to have to answer this question each time they
login to portal.
I found a APAR on the IBM site for version 4.2 of Portal Server stating
that this problem would be fixed in the next fixpak and everything would
default to secure.
I'm using WebSphere Portal Express for MultiPlatforms 5.0 and was
wondering if anyone else had this problem and how they solved it.
Thanks,
Doug Thomson
| |
| L D Jones 2004-02-13, 10:33 am |
| dbthomson@gov.pe.ca wrote:
>
> I've followed the instructions for setting up Login protection for
> Portal using SSL.
>
> When I click the Login button I'm redirected to a secure page and my
> userid and password are encrypted between the browser and the portal
> server.
>
> My problem occurs after I get logged in, I receive a message stating
> that the page contains secure and unsecure information and do I want to
> display the unsecure information. As far as I can determine the
> unsecure information is graphics.
>
> I don't want my users to have to answer this question each time they
> login to portal.
>
> I found a APAR on the IBM site for version 4.2 of Portal Server stating
> that this problem would be fixed in the next fixpak and everything would
> default to secure.
Can you post the link to this APAR?
| |
| dbthomson@gov.pe.ca 2004-02-15, 11:33 pm |
| Sure:
http://www-1.ibm.com/support/docvie...3DSS6FE6&conte=
xt=3DSSEQTP&context=3DSS7JFU&context=3DSS4QY3&context=3DSS7K4U&context=3D=
SSSM58&context=3DSSCGZ4&context=3DSSMKUK&context=3DSS2GTQ&context=3DSSKMA=
B&context=3DSS9H3T&context=3DSS433P&context=3DSSKM8N&context=3DSSHQUD&con=
text=3DSSSRR3&context=3DSSEK2R&context=3DSSSRD5&context=3DSSSRKD&context=3D=
SSYRZK&context=3DSSZMJX&context=3DSSJQXX&context=3DSSPK6R&context=3DSS3PV=
T&context=3DSSLMAE&context=3DSSPK6A&context=3DSSEPKX&context=3DSSEPLE&con=
text=3DSSSJ59&context=3DSSSJ3W&context=3DSSSU9J&context=3DSSFKTZ&context=3D=
SSZND2&context=3DSSKJJK&context=3DSSGPGS&context=3DSSBQMN&context=3DSSNM6=
Y&context=3DSS2K2T&context=3DSSZQDW&context=3DSSNRZ4&context=3DSSVNX5&con=
text=3DSSFLUG&context=3DSSBSZ7&context=3DSSAJC5&context=3DSS5RCF&context=3D=
SS5RG2&context=3DSSBTEG&context=3DSSSUAS&context=3DSSDL9D&context=3DSSFKU=
X&context=3DSSWHKB&context=3DSSSJKD&context=3DSW900&context=3DSW910&conte=
xt=3DSSFKSX&context=3DSSVLA5&context=3DSW920&context=3DSSEPL3&context=3DS=
S2KC2&context=3DSSBRWT&context=3DSSERHA&context=3DSSQKRQ&context=3DSSHRKX=
&context=3DSS3NNG&context=3DSS2KCV&context=3DSS2KCN&context=3DSSBRLP&cont=
ext=3DSSGTPH&context=3DSSXJB2&context=3DSSSUDG&context=3DSS3M8D&context=3D=
SS5LZB&context=3DSS5LZM&context=3DSS2MD7&context=3DSSL273&context=3DSSNM8=
Q&context=3DSSMQRN&context=3DSSKNV8&context=3DSSKNG6&context=3DSSKNGX&con=
text=3DSSMQSV&context=3DSSKNJU&q1=3Dportal&q2=3D4.1.3&uid=3Dswg21066344&l=
oc=3Den_US&cs=3Dutf-8&lang=3Den
I found the following in a document titled "Setting up SSL for WebSphere
Portal"
With SSL enabled, WebSphere Portal Version 4.1.2 transmits some elements =
of
the portal page (graphics and style sheets) using HTTP. As a result, some=
users are prompted if they want to display the nonsecure items. This is
corrected in the fixpack (Version 4.1.3) so that all elements of the port=
al
page are transmitted using HTTPS.
Doug
L D Jones wrote:
> dbthomson@gov.pe.ca wrote:
[color=blue]
[color=blue]
to[color=blue]
ng[color=blue]
uld[color=blue]
>
> Can you post the link to this APAR?
| |
| dbthomson@gov.pe.ca 2004-02-16, 1:33 am |
| I think I have figured out what is going on. It is actually working as
designed. The images that are not secure are coming from remote sites through
the news, stocks, and weather portlets. The graphics from the portal server
(welcome screen) etc are all secure. At least I think this is how it should
work. Straighten me out if I am wrong..
Doug
L D Jones wrote:
> dbthomson@gov.pe.ca wrote:
>
> Can you post the link to this APAR?
| |
| lklinger610 2004-02-16, 7:33 am |
| I'm also on the same platform for Linux and experienced the same message. We are currently moving to 5.0.2 and I'm hopeful that this message will disappear along with some other issues.
|
|
|
|