WebLogic Server 8 – 12x: Install and Configure Your SSL/TLS Certificate

By -
If you still need to create a certificate signing request (CSR) and order your certificate.
After we've validated and issued your SSL certificate, you can install it on your WebLogic 8, 9, 10, 11, or 12.x server (where the CSR was generated) and configure the server to use the certificate

Use Java Keytool to Install Your SSL Certificate in WebLogic:
keytool -import -trustcacerts -alias server -file /your_domain_com.p7b -keystore your_domain_com.jks

 You should get a confirmation that the "Certificate reply was installed in keystore".
  • If you are prompted to trust the certificate, type "y" or "yes".
  • The installation of this file loads all the necessary certificates to your Keystore.
  • Now you just need to configure your server to use the certificate.
Configure the Keystore for Use in WebLogic:
On your WebLogic server, expand the Servers node and select the server you need to configure.
Next, go to Configuration-->Keystores and SSL.
To enable your new keystore, under Keystore Configuration, click the Change... link
Select Custom Identity and Java Standard Trust as your keystore configuration type, and then click Continue.
Under Custom Identity Keystore File Name, type the full path to the your_domain.jks file on your WebLogic server.
For Custom Identity Keystore Type, select jks.
For Custom Identity Keystore PassPhrase, type the password you created when creating the Keystore
When asked again, type your Keystore password and confirm.
Click Continue. Then click Finish.
Go back and expand the Server node and select the server you are configuring.
Next, go to Configuration-->Keystores and SSL and under Keystore Configuration, click the Change… link
On the Configure SSL page, select Key Stores as the method in which identity and trust is stored for the WebLogic server.
Click Continue. Then click Finish.

Congratulations! Your Keystore should now be installed and enabled on your WebLogic server
Download Certificate
Download the your_domain_com.p7b certificate file from your DigiCert Account.
On the My Orders tab, click the order number link and then click Download
Install the Certificate File in Your Keystore
Run the command below to install the certificate.
Specify the Private Key Alias and Passphrase that were used when creating your Keystore.
    Reboot the WebLogic server.

    Comments

    Post a Comment

    Popular posts from this blog

    Interview question for File and FTP Adapter

    By -
    1)  Why File Adapter is used in SOA Suite tool ?.  File adapter is used to read and write file from and to local system. 2)  Why FTP Adapter is used in SOA Suite tool ?. FTP adapter is similar to File adapter with one difference that this adapter is used to read/write the file from/to remote system. 3)  What all differences we have between File and FTP adapters.  Following are the major differences between File and FTP adapter. File Adapter 1. It is used to deal with local systems only. 2. Do not require any configuration to make this adapter work. FTP Adapter 1. It is used to deal with remote systems. 2. Outbound Connection Pool needs to be configured with FTP details to make this adapter work. 4)  File & FTP adapters are known and Transactional or Non-Transactional adapters?.  These adapters are known as non-transactional adapters as these adapters does not support transactions. 5)  Can we read flat files using these adapter...
    Read more

    What is boot.properties file and how to create

    By -
    Boot.properties is a file, it containing  weblogic server username and password . If your server is in production mode then only you have to create manually this boot.properties file. If your server is in Development then you no need to create this file because server it self create this file while creating Domain. A boot identity file contains the user credentials for starting and stopping an instance of WebLogic Server. An administration server or managed server can refer to this file for user credentials instead of prompting at the command line to provide them. To Create boot.properties: Go to below location Win :   C:\Oracle\Middleware\user_projects\domains\test_domain\servers\AdminServer\ Linux : Oracle\Middleware\user_projects\domains\test_domain\servers\AdminServer\ 1.First you have to create security folder under AdminServer 2.Create boot.properties file under security folder. 3.Open notepad and write the below two lines username=********** password=*****...
    Read more

    SSL Exceptions in Admin Server and Node Manager.

    By -
    javax.net.ssl.SSLKeyException: [Security:090482]BAD_CERTIFICATE alert was received from oracle.test.com – xx.xxx.xx.xx. Check the peer to determine why it rejected the certificate chain (trusted CA configuration, hostname verification). SSL debug tracing may be required to determine the exact reason the certificate was rejected. <WARNING> <Uncaught exception in server handlerjavax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake>javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:849) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1170) The above exceptions are  the most common exceptions encountered during the setup of Weblogic Server in an environment. The stack does suggest what could be the reasons but the diagnostics are not mentioned. To debug this issue, first we need...
    Read more