Configuration the Two Way SSL Communications:

By -
To configure the Two Way SSL.
On the Admin Server

 Select  SSL tab: Advanced options
Two Way Client Cert Behaviour should be Client Cert Requested and Enforced.
Save it.
Now if you will can try to access the Admin Console over SSL then you will throw some SSL Handshake exception. 

Because of this process  two way SSL, Client is also requested to submit the certificate and we have not configured any certificate for our client 
So, we need to configure the certificate for the Client and for that again we need the Certificates for the Client.
We will be using the same CertGen utility of Weblogic Server to create the certificate.

 java utils.CertGen <-certfile >ClientCert <-keyfile>ClientKey <-keyfilepass> keypass
Again it will create four certificates for the client.
To convert the client certificate into the PKCS12 format because the browsers generally accept PKSC12 keystore format for storing certificates.
Go to the OpenSSL bin directory and run the openssl.exe file then it will open up the OpenSSL command window where we can run the OpenSSL command.

 On this OpenSSL command use run the following command:
pkcs12 -export -in C:ServerCertClientCert.pem -inkey C:ServerCertClientKey.pem -out C:ServerCertclient-pkcs-12-cert

This will ask for a ClientKey.pem password: <xxxx>

Enter the Export Password: <xxx>

Confirm the Export Pass:<xxx>

This will create the client-pkcs-12-cert.

Now configuring the above certificate into the Browser:

Open Mozilla Firefox >>> Tools >>> Options >>> Encryption >>> View Certificates:

Certificates Tab >>> click on import >>>

Select the client-pkcs-12-cert created above.

Enter the Key password: <xxx>

This will import the Client certificate into the Browser.

Now Restart the required Browser.

Try accessing the Admin Console through the Bowser.

Now the Browser will be able to access the Admin Console.

Comments

  1. BabuNovember 16, 2020 at 12:22 AM

    Hi Lakshmi..
    I am trying to install .war and .ear files to weblogic server(Nodes) using ansible playbook, but i understood that simple copying the .war file from control to manage server will not work, is there any other way possible to install(I dont want to use Wlst). - My requirement is -
    Connect to the serve
    Take the backup of existing war
    Undeploy the war (existing war)
    Check the space in the server
    Deploy the new war
    shutdown the server
    temp and cache need to be taken and store to some location
    restart the server

    Can you please help me with the playbook

    ReplyDelete

Post a Comment

Popular posts from this blog

Interview question for File and FTP Adapter

By -
1)  Why File Adapter is used in SOA Suite tool ?.  File adapter is used to read and write file from and to local system. 2)  Why FTP Adapter is used in SOA Suite tool ?. FTP adapter is similar to File adapter with one difference that this adapter is used to read/write the file from/to remote system. 3)  What all differences we have between File and FTP adapters.  Following are the major differences between File and FTP adapter. File Adapter 1. It is used to deal with local systems only. 2. Do not require any configuration to make this adapter work. FTP Adapter 1. It is used to deal with remote systems. 2. Outbound Connection Pool needs to be configured with FTP details to make this adapter work. 4)  File & FTP adapters are known and Transactional or Non-Transactional adapters?.  These adapters are known as non-transactional adapters as these adapters does not support transactions. 5)  Can we read flat files using these adapter...
Read more

What is boot.properties file and how to create

By -
Boot.properties is a file, it containing  weblogic server username and password . If your server is in production mode then only you have to create manually this boot.properties file. If your server is in Development then you no need to create this file because server it self create this file while creating Domain. A boot identity file contains the user credentials for starting and stopping an instance of WebLogic Server. An administration server or managed server can refer to this file for user credentials instead of prompting at the command line to provide them. To Create boot.properties: Go to below location Win :   C:\Oracle\Middleware\user_projects\domains\test_domain\servers\AdminServer\ Linux : Oracle\Middleware\user_projects\domains\test_domain\servers\AdminServer\ 1.First you have to create security folder under AdminServer 2.Create boot.properties file under security folder. 3.Open notepad and write the below two lines username=********** password=*****...
Read more

SSL Exceptions in Admin Server and Node Manager.

By -
javax.net.ssl.SSLKeyException: [Security:090482]BAD_CERTIFICATE alert was received from oracle.test.com – xx.xxx.xx.xx. Check the peer to determine why it rejected the certificate chain (trusted CA configuration, hostname verification). SSL debug tracing may be required to determine the exact reason the certificate was rejected. <WARNING> <Uncaught exception in server handlerjavax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake>javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:849) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1170) The above exceptions are  the most common exceptions encountered during the setup of Weblogic Server in an environment. The stack does suggest what could be the reasons but the diagnostics are not mentioned. To debug this issue, first we need...
Read more