1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
As it turns out, we discovered that our requests were timing out because IIS doesn't support proxy protocol. That's okay, because 2-way SSL doesn't utilize x-forwarded-for headers.
We got it to work as follows:
-
Configure the ELB to pass-through SSL to the server (Protocol = TCP, Port = 443).
-
Ensure proxy mode is disabled on the ELB (this is the default setting).
-
Configure the IIS site to accept client-side SSL certificates, using these instructions.
-
Client-Side app adds the client-cert to each rest request
-
Server-Side app's request handler inspects requests for matching client-cert thumbprint
답변함 7년 전
관련 콘텐츠
- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 2년 전