Skip to main content

I am trying to figure out how I can get IFS Apps 10 to either listen on a different domain name or use a reverse proxy. 

For example, use ifs-prod.domain.tld for internal and use ifs-prod.ext.tld for external. 

I’ve tried NGINX and it seems to always want to redirect me to the base url after logging in. I’ve also tried adding another virtual host in the mod_mws_ohs.conf, which listens on that port/url, however it still wants to force redirects to the base url.. Is it because the base url is hardcoded in weblogic? I’ve read some post that some are not setting this, but that could potentially lower security, if you were worried about hardening, and typically it’s best practices to do so. 

I’ve tried all sorts of different rewrite rules and such with both Apache on the MW server and on the reverse proxy server.. Any ideas?

@c86_pipe there are some examples in the Apps10 Technical Documentation, including a scenario for mixed external/internal access. Is that any help?

See https://docs.ifs.com/techdocs/foundation1/010_overview/210_security/090_exposing_to_internet/examples.htm

For a quick recap, the general documentation for external access is here: https://docs.ifs.com/techdocs/foundation1/010_overview/210_security/090_exposing_to_internet/default.htm

Best regards,

Rukmal

@c86_pipe there are some examples in the Apps10 Technical Documentation, including a scenario for mixed external/internal access. Is that any help?

See https://docs.ifs.com/techdocs/foundation1/010_overview/210_security/090_exposing_to_internet/examples.htm

For a quick recap, the general documentation for external access is here: https://docs.ifs.com/techdocs/foundation1/010_overview/210_security/090_exposing_to_internet/default.htm

Best regards,

Rukmal

Yes, but that won’t allow us to use a different url for the reverse proxy, like if we wanted to use ifs-1.ext.domain.net for example.. do you know how to get around this?

@c86_pipe I’m afraid I have no first-hand experience in this regard. Hopefully someone else has some insight to share!

Best regards,

Rukmal

@c86_pipe have you found a solution for this?

Is there a way to configure a secondary_url in Apps10 to use for external access, this is an option that is available for remote deployments of IFS Cloud.

Have you experimented with disabling hostname verification in the SSL configuration of Weblogic?

What symptoms are you encountering?  403 Forbidden messages from ohs ?

Brent

@c86_pipe any solution for this?

Terms & ConditionsCookie settings