Configure SSL in WebLogic:
1. Generating the certificate:
The following steps are:
Step1: Open a command prompt and set the environment by running the setDomainEnv script.
( C:\bea9\user_projects\domains\ram_domain\bin\setDomainEnv.cmd)
Step2: Generate the private – public key pair. For demonstration we would use keytool java utility to do so. However we can use other utilities like openssl etc.
keytool -genkey -alias mykey -keyalg RSA -keysize 2048 -keystore identity.jks
Step3: Generate a Certificate Signing Request (CSR) and send it to Certifying Authority.
keytool -selfcert -alias mykey -keystore identity.jks
Step 4: Create a identity keystore, this can be done my exporting
keytool -export -alias mykey -file cert.cer -keystore identity.jks
Step5: Create a trust keystore, this can be done my importing.
keytool -import -alias mykey -file cert.cer -keystore trust.jks -noprompt
To verify the contents of the keystore, you can use the below command,
keytool -list -v -keystore <keystore-name> -storepass <keystore-password>
1. Generating the certificate:
The following steps are:
Step1: Open a command prompt and set the environment by running the setDomainEnv script.
( C:\bea9\user_projects\domains\ram_domain\bin\setDomainEnv.cmd)
Step2: Generate the private – public key pair. For demonstration we would use keytool java utility to do so. However we can use other utilities like openssl etc.
keytool -genkey -alias mykey -keyalg RSA -keysize 2048 -keystore identity.jks
Step3: Generate a Certificate Signing Request (CSR) and send it to Certifying Authority.
keytool -selfcert -alias mykey -keystore identity.jks
Step 4: Create a identity keystore, this can be done my exporting
keytool -export -alias mykey -file cert.cer -keystore identity.jks
Step5: Create a trust keystore, this can be done my importing.
keytool -import -alias mykey -file cert.cer -keystore trust.jks -noprompt
To verify the contents of the keystore, you can use the below command,
keytool -list -v -keystore <keystore-name> -storepass <keystore-password>
2) Configuring the keystore on the WebLogic Server:
Step 1: Log into the Admin Console, Click on servers
Step 2: Click on Lock and Edit
Step 3: select the server on which you want to configure the SSL certificate.(Ex:ms1)
Step 4: Click on keystores
Step 5: select Custom identity and Custom trust
Identiy:
CustomIdentitykeystore:C:\bea9\user_projects\domains\sai_domain\identity.jks
Custom Identity keystore type: jks
Custom identity passphrase : lakshmi@123
Trust:
Custom trust keystore: C:\bea9\user_projects\domains\sai_domain\trust.jks
Custom trust keystore type: jks
Custom trust passphrase : lakshmi@123
àsave ---àAcivate changes
Step 1: Log into the Admin Console, Click on servers
Step 2: Click on Lock and Edit
Step 3: select the server on which you want to configure the SSL certificate.(Ex:ms1)
Step 4: Click on keystores
Step 5: select Custom identity and Custom trust
Identiy:
CustomIdentitykeystore:C:\bea9\user_projects\domains\sai_domain\identity.jks
Custom Identity keystore type: jks
Custom identity passphrase : lakshmi@123
Trust:
Custom trust keystore: C:\bea9\user_projects\domains\sai_domain\trust.jks
Custom trust keystore type: jks
Custom trust passphrase : lakshmi@123
àsave ---àAcivate changes
Step 6: Click on SSL
Step 7: Enter identity
Private key alias: mykey
Privatekey passphrase : lakshmi@123
---àsave ---à Activate changes
Step 7: Enter identity
Private key alias: mykey
Privatekey passphrase : lakshmi@123
---àsave ---à Activate changes
àTo check SSL type browser https://localhost:5003(ms1 ssl portnumber)/messaging(deploying application)
No comments:
Post a Comment