Configure the reverse proxy to connect to SAP Mobile Server using mutual SSL authentication, then set up specific certificate requirements.
Listen 8082 <VirtualHost *:8082> ServerName proxy-server # activate HTTPS on the reverse proxy SSLEngine on SSLCertificateFile "C:/Apache2.2/conf/proxy-server.crt" SSLCertificateKeyFile "C:/Apache2.2/conf/proxy-server.key" SSLCertificateChainFile "C:/Apache2.2/conf/proxy-server-ca.crt" # activate the client certificate authentication SSLCACertificateFile "C:/Apache2.2/conf/trusted-client-ca.crt" SSLVerifyClient require SSLVerifyDepth 10 SSLProxyEngine On SSLProxyCACertificateFile C:/Apache2.2/conf/sup-server-ca.crt SSLProxyMachineCertificateFile C:/Apache2.2/conf/proxy-client.pem # initialize the special headers to a blank value to avoid http header forgeries RequestHeader set SSL_CLIENT_CERT "" <Location /> 4.add SSL_CLIENT_CERT header to forward real client certificate RequestHeader set SSL_CLIENT_CERT "%{SSL_CLIENT_CERT}s" ProxyPass https://sup-server:8002/ ProxyPassReverse https://sup-server:8002/ </Location> </VirtualHost>