SSL(Security Socket Layer) and configure by using Keytool

By -
Configure SSL in WebLogic:

1. Generating the certificate:

The following steps are:

Step1: Open a command prompt and set the environment by running the setDomainEnv script.
           ( C:\bea9\user_projects\domains\ram_domain\bin\setDomainEnv.cmd)

Step2: Generate the private – public key pair use keytool java utility to do so.            

           keytool  -genkey  -alias mykey   -keyalg RSA   -keysize 2048   -keystore  identity.jks

Step3: Generate a Certificate Signing Request (CSR) and send it to Certifying Authority.

            keytool  -selfcert   -alias mykey  -keystore   identity.jks

Step 4: Create a identity  keystore, this can be done my exporting

            keytool   -export  -alias  mykey  -file  cert.cer  -keystore   identity.jks

Step5: Create a trust keystore, this can be done my importing.

            keytool   -import   -alias   mykey  -file  cert.cer   -keystore   trust.jks    -noprompt

To verify the contents of the keystore, you can use the below command,

            keytool  -list  -v  -keystore <keystore-name>  -storepass <keystore-password>
2)  Configuring the keystore on the WebLogic Server:

Step 1: Log into the Admin Console, Click on servers
Step 2: Click on Lock and Edit
Step 3: select the server on which you want to configure the SSL    certificate.(Ex:ms1)
Step 4: Click on keystores
Step 5: select Custom identity and Custom trust

Identiy:

CustomIdentitykeystore:C:\bea9\user_projects\domains\sai_domain\identity.jks
Custom Identity keystore type: jks
Custom identity passphrase : lakshmi@123
Trust:
Custom trust keystore: C:\bea9\user_projects\domains\sai_domain\trust.jks
Custom trust keystore type: jks
Custom trust passphrase : lakshmi@123
Click Save  
Activate changes
Step 6: Click on SSL

Step 7: Enter identity
            Private key alias: mykey
            Privatekey passphrase : lakshmi@123
save    
Activate changes
To check SSL type browser 
 https://localhost:5003(ms1: ssl portnumber)/messaging(deploying application)

Comments

  1. The SSL StreetMay 8, 2018 at 4:06 AM

    Very nice post.SSL Certificates protect your customer's personal data including passwords, credit cards and identity information. Getting an SSL certificate is the easiest way to increase your customer's confidence in your online business.

    ReplyDelete

Post a Comment

Popular posts from this blog

Interview question for File and FTP Adapter

By -
1)  Why File Adapter is used in SOA Suite tool ?.  File adapter is used to read and write file from and to local system. 2)  Why FTP Adapter is used in SOA Suite tool ?. FTP adapter is similar to File adapter with one difference that this adapter is used to read/write the file from/to remote system. 3)  What all differences we have between File and FTP adapters.  Following are the major differences between File and FTP adapter. File Adapter 1. It is used to deal with local systems only. 2. Do not require any configuration to make this adapter work. FTP Adapter 1. It is used to deal with remote systems. 2. Outbound Connection Pool needs to be configured with FTP details to make this adapter work. 4)  File & FTP adapters are known and Transactional or Non-Transactional adapters?.  These adapters are known as non-transactional adapters as these adapters does not support transactions. 5)  Can we read flat files using these adapter...
Read more

What is boot.properties file and how to create

By -
Boot.properties is a file, it containing  weblogic server username and password . If your server is in production mode then only you have to create manually this boot.properties file. If your server is in Development then you no need to create this file because server it self create this file while creating Domain. A boot identity file contains the user credentials for starting and stopping an instance of WebLogic Server. An administration server or managed server can refer to this file for user credentials instead of prompting at the command line to provide them. To Create boot.properties: Go to below location Win :   C:\Oracle\Middleware\user_projects\domains\test_domain\servers\AdminServer\ Linux : Oracle\Middleware\user_projects\domains\test_domain\servers\AdminServer\ 1.First you have to create security folder under AdminServer 2.Create boot.properties file under security folder. 3.Open notepad and write the below two lines username=********** password=*****...
Read more

SSL Exceptions in Admin Server and Node Manager.

By -
javax.net.ssl.SSLKeyException: [Security:090482]BAD_CERTIFICATE alert was received from oracle.test.com – xx.xxx.xx.xx. Check the peer to determine why it rejected the certificate chain (trusted CA configuration, hostname verification). SSL debug tracing may be required to determine the exact reason the certificate was rejected. <WARNING> <Uncaught exception in server handlerjavax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake>javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:849) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1170) The above exceptions are  the most common exceptions encountered during the setup of Weblogic Server in an environment. The stack does suggest what could be the reasons but the diagnostics are not mentioned. To debug this issue, first we need...
Read more