search cancel

Getting HTTP 405 Error on POST request with X509 certificate authentication.

book

Article ID: 53346

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Description:

On Apache when you Set UP SSL and X509 certificate authentication you can encounter HTTP 405 error if you are not setting the SSL properly.
You will have the following error in the apache error.log:
[error] SSL Re-negotiation in conjunction with POST method not supported! hint: try SSLOptions +OptRenegotiate

Solution:

Change the ssl.conf, adding .fcc|.sfcc in the Files pattern:

 <Files ~ "\.(cgi|fcc|sfcc|shtml|phtml|php3?)$">
 #SSLOptions +StdEnvVars
 #SSLOptions +StdEnvVars +CompatEnvVars
 SSLOptions +OptRenegotiate
 </Files>

And remove the Location for the SSLVerifyClient

#<Location /siteminderagent/certoptional>
SSLVerifyClient optional
SSLVerifyDepth  10
#</Location>

Environment

Release:
Component: SMAPC