www.StudyJava.org

We are upgrading from WebLogic 8.1 to WebLogic 9.2. We use IIS 6.0 as a proxy. IIS has an ISAPI plugin that authenticates our users using SPENGO and then forwards the request to WL.

In 8.1, the request was authenticated by our ISAPI plugin, before the request was forwarded to our application running in WL.

In 9.2, logs show that the request gets authenticated by our ISAPI plugin, but when the request is forwarded to WL, WL sends back another authentication prompt to login to WebLogic. I am using the default WebLogic security realm without any changes.

HTTP header
WWW-Authenticate: Basic realm="WebLogic Server"

If I access our application directly on WebLogic (bypassing IIS), I can access the application without being prompted to login by WL. The ear does not have any security configured in it. I believe having an authenticated header in the request to WL is causing the additional request. I would like to disable WL from asking to login to its security because we already have our security mechanism in place on IIS.

Is there a way to disable WL security?

Is there an easy way to shave off the Brembo logo from the DC5R or TL-S calipers?