We are planning to have a JBoss EAP 6 cluster, and an Apache web server as it's frontend. All the traffic from outside to the web applications of the cluster, should be https. The traffic to webservices of EJB type should be https too, but with client authentication with certificates. So, is it possible to use this architecture, and use https without client certificate authentication for some cases (web applications) and use https with client certificate authentication for others (webservices)?.

Thanks very much.