I have configured my application to use the certificate realm, and all works well, except the session timeouts after about 3 minutes. I have the session-timeout entry set in the web.xml to 30 ... this works for http sessions but seems to be ignored for https.
Also I have tried setting the ssl3-session-timeout in the domain.xml configuration file ... did not help.
[Message sent by forum member 'jelastn' (jelastn)]
http://forums.java.net/jive/thread.jspa?messageID=350487