1. Manuals
  2. Brands
  3. Oracle Manuals
  4. Software
  5. HTTP Server B12255-01
  6. Administrator's manual

Oracle HTTP Server B12255-01 Administrator's Manual page 151

10g release 1 (10.1)
Hide thumbs
Table of Contents

Advertisement

Controls various runtime options on a per-directory basis. In general,
SSLOptions
if multiple options apply to a directory, the most comprehensive option is applied
(options are not merged). However, if all of the options in an SSLOptions directive
are preceded by a plus ('+') or minus ('-') symbol, then the options are merged.
Options preceded by a plus are added to the options currently in force, and options
preceded by a minus are removed from the options currently in force.
Category
Valid Values
Security Services Implemented Within Oracle HTTP Server
Value
StdEnvVars: Creates the standard set of CGI/SSI environment
I
variables that are related to SSL. This is disabled by default
because the extraction operation uses a lot of CPU time and
usually has no application when serving static content.
Typically, you only enable this for CGI/SSI requests.
ExportCertData: Enables the following additional CGI/SSI
I
variables:
SSL_SERVER_CERT
SSL_CLIENT_CERT
SSL_CLIENT_CERT_CHAIN_n (where n= 0, 1, 2...)
These variables contain the Privacy Enhanced Mail
PEM
(
)-encoded X.509 certificates for the server and the client
for the current HTTPS connection, and can be used by CGI
scripts for deeper certificate checking. All other certificates of
the client certificate chain are provided. This option is "Off" by
default because there is a performance cost associated with
using it.
SSL_CLIENT_CERT_CHAIN_n variables are in the following
order: SSL_CLIENT_CERT_CHAIN_0 is the intermediate CA
who signs SSL_CLIENT_CERT. SSL_CLIENT_CERT_CHAIN_1
is the intermediate CA who signs SSL_CLIENT_CERT_CHAIN_
0, and so forth, with SSL_CLIENT_ROOT_CERT as the root CA.
FakeBasicAuth: Translates the subject
I
X.509
of the client
user name. This means that the standard HTTP server
authentication methods can be used for access control. Note that
no password is obtained from the user; the string 'password' is
substituted.
distinguished name
certificate into an HTTP basic authorization
Managing Security 8-21

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the HTTP Server B12255-01 and is the answer not in the manual?

Related Manuals for Oracle HTTP Server B12255-01

Related Products for Oracle HTTP Server B12255-01

This manual is also suitable for:

Http server

Table of Contents