Hi All,

I am using websphere 5.0 with Sun Access Manager 6.3 (2005 Q1) which also co
nnects to Sun One Directory Server 5.2. I installed Policy Agent for WAS 5.0
 and the setup is working absolutely fine when AM (Access manager) is runnin
g on http. I enter my appli
cation url as http://something.com/myapp/index.jsp it is immediately redirected to [url
]http://amserver.com/amserver/UI/Login[/url] and redirected back to my application
 once I am authenticated (since I am using SSO_ONLY).

However, the moment I switch the AM setup to SSL, I am able to call the AM page by typi
ng its URL in the browser (https://amserver.com/amserver/UI/Login). But when
 (after making the appropriate settings to the WAS Policy Agent props file) 
I try to call th
e application url on the WAS (for it to be intecepted and redirected to the 
AM running on SSL), i receive an HTTP 403 forbidden.

I am using a MS Cert Server and have created 2 CA certificates - one with my
 amserver.com in the subject and the other with the something.com (WAS) in t
he subject. I have installed the amserver.com CA certificate in the AM. and 
have imported the something
.com CA certificate into WAS using ikeyman.

Stil that did not work. I even imported the CA certificate into the cacerts 
key db which resides in java_home/lib/security - however, that didnt work ei
ther. I am constantly receiving a 403 error. However, the moment I switch to
 http for Access Manager, t
he setup works fine.

I am sure it is something to with my certificates not being installed proper
ly. Can somebody please guide me? ANY help would be appreciated.

~saahil

[ Post a follow-up to this message ]