Use Server Cert in Managed server not working

I am using WebLogic 10.3.3 for a managed server with a jks keystore and jrockit cacert as the Custom Identity and Java Standard Trust. I have the FQDN as the alias for the server in the keystore. Under Advanced, I have checked Use Server Cert so outgoing web service calls from my deployed application will use the server cert as its identifier. I have used this configuration before, but it is not working this time.
At first, there were some weird Unsupported OID messages when loading the cacerts, but I was able to clear those messages up. Now, when the managed server comes up, the keystore and cacert file load without error, but the outgoing calls do NOT have the certificate included.
I have no failures regarding the certificates in any of the output files. I have tried two separate keystore files without change. Any help would be appreciated.

You can re-create the SSL handshake with a command line java app that uses the same keystores. Is it possible that the service you're invoking is no longer requesting the client cert?
The command line uses a linux script and a java app:
--- linux script:
#!/bin/sh
CLIENT_KEYSTORE="full path to your server's identity keystore"
TRUST_STORE=$JAVA_HOME/jre/lib/security/cacerts
echo "Make sure you're using the right trust store..."
echo $TRUST_STORE
echo
echo "Enter trust store password"
read -s trustpass
echo
echo "Enter client keystore password for $CLIENT_KEYSTORE"
read -s keypass
SSL_OPTIONS="-Djavax.net.ssl.trustStore=$TRUST_STORE "
SSL_OPTIONS="$SSL_OPTIONS -Djavax.net.ssl.trustStorePassword=$trustpass "
SSL_OPTIONS="$SSL_OPTIONS -Dssl.debug=true -Dweblogic.StdoutDebugEnabled=true "
SSL_OPTIONS="$SSL_OPTIONS -Djavax.net.debug=ssl,handshake,verbose "
SSL_OPTIONS="$SSL_OPTIONS -Djavax.net.ssl.keyStore=$CLIENT_KEYSTORE "
SSL_OPTIONS="$SSL_OPTIONS -Djavax.net.ssl.keyStorePassword=$keypass "
javac SSL_Test.java
java -D $SSL_OPTIONS SSL_Test > client_ssl.out
---- java source:
import java.net.*;
import java.io.*;
public class SSL_Test {
public static void main(String[] args) throws Exception {
// https://someserver.net:999/someservice?wsdl
URL verisign = new URL( "address of the wsdl" );
System.out.println( "Opening URL: " + verisign.toString() ) ;
BufferedReader in = new BufferedReader(
new InputStreamReader(
verisign.openStream()));
String inputLine;
while ((inputLine = in.readLine()) != null)
System.out.println(inputLine);
in.close();
to run this, just run the commEnv.sh script to set up your java and then run the script.
This has been very useful to me in the past in diagnosing ssl connectivity issues.

Similar Messages

  • How to apply  special right  to the PDF  file using the LiveCycle Rights Management Server.?

    How to apply special right to the PDF  file using the LiveCycle Rights Management Server.?
    I want  to edit bar code field data using Adobe Reader. Bar Code field was designed and data was changing using Acrobat X1 Professional (Trial Version). But can't do so in adobe reader.

    I think that product has nothing to do with it. You would use LiveCycle Reader Extensions.

  • Issue listeneing queue from Weblogic Cluster server with multiple managed server

    Haveing issue listeneing queue from Weblogic Cluster server with multiple managed server.
    Weblogic Cluster structure is like
    Weblogic Cluster01
      --ManagedServer01(http://server01.myhost.com:7001)
      --ManagedServer02(http://server02.myhost.com:7001)
    JMS Servers
      JMSserver01 targeting: ManagedServer01
      JMSserver02 targeting: ManagedServer02
      JMSmodule
      ConnectionFactory01 targeting:JMSserver01,JMSserver02
      UDQueue01 targeting:JMSserver01,JMSserver02
    Uniform Distributed Queue in Monitoring tab showing like this
      mysystemmodule!JMSserver01@UDQueue01
      mysystemmodule!JMSserver02@UDQueue01
    So when I am sending message to any Host(by specifying the provider URL) its distributing equally on both server like
      mysystemmodule!JMSserver01@UDQueue01 10
      mysystemmodule!JMSserver02@UDQueue01 10
    But when try to listen message from these queue, it is listening from one server, for which URL given to connect.
      mysystemmodule!JMSserver01@UDQueue01 0
      mysystemmodule!JMSserver02@UDQueue01 10
    untill I connect to other server by giveing its URL, will not able to access other message left on the queue.
    Solutions that tried
      1) we have tried give both server URL coma sparated in provider URL
    we need to configur same scenario for 5 managed server with 3 listener on other servers.
    Do any one have solution for this.

    You need to have:
    1. Consumers connected to each UDQ member
    OR
    2. If no consumers in some of the members is expected, you can configure Forward Delay (specify the amount of time, in seconds, that a queue member with messages, but with no consumers, will wait before forwarding its messages to other queue members that do have consumers):
    http://docs.oracle.com/cd/E12839_01/apirefs.1111/e13952/taskhelp/jms_modules/distributed_queues/ConfigureUDQGeneral.html
    For example you can set it to 10 (10s)
    Additional Information here:
    http://docs.oracle.com/cd/E23943_01/web.1111/e13727/dds.htm#i1314228
    http://docs.oracle.com/cd/E23943_01/apirefs.1111/e13951/mbeans/DistributedQueueBean.html?skipReload=true#ForwardDelay
    How Does JMS Load Balancing Work with Distributed Queues and Uniform Distributed Queues? (Doc ID 827294.1)
    I hope this helps
    Best Regards
    Luz

  • Setting up an admin server (win) + a managed server (linux)

    I am trying to set up the following domain on weblogic 8.1 SP2:
    1. An administration server (+workshop) on my local Windows box
    2. A managed server running on a red hat enterprise box, that connects to the
    administration server on my windows box.
    I've not been able to find any documentation on this, and the installation process
    is far from intuitive.
    Can someone help me with a step-by-step guide? I'm not trying to do anything fancy
    here ;-) Thanks!

    Resolution found:
    Went through the config.xml file. Found that in the server tag the listen address
    for the server and managed server is not there. Entered the Corresponding listen
    address for both Admin and Managed server
    "Henrik Pettersen" <[email protected]> wrote:
    >
    >
    >
    Thank you for the information. Just what I needed. But I am now encountering
    another
    problem when I try to startManagedWebLogic:
    <03-Jun-2004 16:48:03 o'clock BST> <Info> <Configuration Management>
    <BEA-150015>
    <Connecting to the administration server http://banana:7001 to retrieve
    the initial
    configuration.>
    <03-Jun-2004 16:48:06 o'clock BST> <Notice> <Log Management> <BEA-170019>
    <The
    server log file /usr/local/bea/user_projects/domains/domain/managed/managed.log
    is opened. All server side log events will be written to this file.>
    <03-Jun-2004 16:48:06 o'clock BST> <Emergency> <Configuration Management>
    <BEA-150011>
    <There was an attempt to start a managed server ( null:7001 ) using the
    same address
    as the admin server ( banana:7001 ).>
    <03-Jun-2004 16:48:06 o'clock BST> <Emergency> <WebLogicServer> <BEA-000342>
    <Unable
    to initialize the server: weblogic.management.configuration.ConfigurationException:
    [Configuration Management:150011]There was an attempt to start a managed
    server
    ( null:7001 ) using the same address as the admin server ( banana:7001
    ).>
    The WebLogic Server did not start up properly.
    Exception raised: 'weblogic.management.configuration.ConfigurationException:
    [Configuration
    Management:150011]There was an attempt to start a managed server ( null:7001
    using the same address as the admin server ( banana:7001 ).'
    Reason: weblogic.management.configuration.ConfigurationException: [Configuration
    Management:150011]There was an attempt to start a managed server ( null:7001
    using the same address as the admin server ( banana:7001 ).
    I am trying to run Weblogic 8.1 Portal Domain on Red Hat Enterprise 3.
    The Linux config file is attached. Any clues would be most appreciated.
    Thank you for your help.
    Henrik
    "Michael Zanchelli" <[email protected]> wrote:
    Involving multiple machines obviously adds some complexity but for a
    development
    environment that you describe, you'll want to use the ConfigurationWizard
    to
    create domains (with the same name) on both machines. On the admin server
    machine,
    use the Custom path in Config Wiz to add the managed server, and onthe
    managed
    server machine, you can use Express mode. Start the admin server, then
    use startManagedWeblogic
    on the managed server machine, specifying the managed server name and
    admin url
    as command line args.
    In a production environment, you'll likely use node manager to start
    managed servers
    and a domain does not need to be created on the managed server machine
    in that
    case.
    edocs has lots of good overview information and details on using Config
    Wiz.
    "Henrik" <[email protected]> wrote:
    I am trying to set up the following domain on weblogic 8.1 SP2:
    1. An administration server (+workshop) on my local Windows box
    2. A managed server running on a red hat enterprise box, that connects
    to the
    administration server on my windows box.
    I've not been able to find any documentation on this, and the installation
    process
    is far from intuitive.
    Can someone help me with a step-by-step guide? I'm not trying to doanything
    fancy
    here ;-) Thanks!

  • I am using laptop hitting and slow system not working

    i am using laptop hitting and slow system not working and very late opan file browser every think . plez help me

    Hi,
    Shut down the notebook.  Tap away at the esc key as you start the notebook to enter the Start-up Menu.  Select the Bios option ( usually f10 ) and under the Advanced or Diagnostic tab you should find the facility to run tests on both the Hard Drive and Memory.  Post back with the details of any error messages.
    Note:  If the option to run these tests is not available in the Bios Menu, use the f2 diagnostic menu instead.
    Can you also post back with the following details.
    1.  The full Model No. and Product No. of your notebook - see Here for a guide on locating this information.
    2.  The full version of the operating system you are using ( ie Windows 7 64bit ).
    Regards,
    DP-K
    ****Click the White thumb to say thanks****
    ****Please mark Accept As Solution if it solves your problem****
    ****I don't work for HP****
    Microsoft MVP - Windows Experience

  • Norton password manager does not work on 8. How do I return to a previous version?

    when I updated to firefox 8, Norton password manager does not work. How can I return to a previous version. I am surprised that you introduced an update missing this.

    Norton needs to be updated.
    http://community.norton.com/t5/Norton-360/Firefox-8-Support-for-Norton-Toolbar/td-p/581640

  • Just completed a clean install of CS6 Photoshop on my Yosemite Mac Book Pro and the Adobe Application Manager does not work and cannot install a fresh copy from Adobe

    Just re-installed a fresh copy of CS6 Photoshop on my Yosemite Mac Book Pro and somehow the Adobe Application Manager does not work and therefore cannot verify my copy.  What should I do?
    I get a message saying that Adobe Application Manager may be damaged and that I should install a new version of AAM.  But after downloading a fresh copy of AAM and doing the install, the program (AAM) still will not install.  It is like an infinite loop!
    Please, someone help!
    Thanks!

    HI gener7!
    I'm sorry but I am not on Creative Cloud.  I'm still on CS6 and it was the Adobe Application Manager that wasn't working and I could not install the update to this application.  My AAM version is:  8.0.0160
    The link you provided was the update that I wanted to install but it does not work.  A window shows up during that install that says:
    We've encountered the following issues.
    Installer failed to initialize.  Please download Adobe Support Advisor to detect the problem.
    and then the link to the Adobe Support Advisor which leads to a "Adobe Support Advisor has been discontinued" page.
    Thanks!

  • I just downloaded a few ITunes Apps to my PC using windows 8 and they will not work.  Suggestions?  Thank you.

    I just downloaded a few ITunes Apps to my PC using windows 8 and they will not work.  Suggestions?  Thank you.

    The apps can only be run on an iOS device.   They will not run on your PC.

  • File manager still not working w 10.7.3combo

    Since installing lion (I started with 10.7.2) file manager is not working. Yes, I can force uit it and than it does but it is still very annoying and time consumin to do it 2-4 times a day. I was hoping that 10.7.3 will solv it. Than installed based on advice I received hee 10.7.3 compbo but the problem is still there.
    Do you know or have you run accross a thread that explains how to solve it?
    Advanced thats to anyone who can help
    Ruvy

    What is "file manager?"  Is that a piece of third-party software, or are you referring to the Finder?  If it's third-party software, you'll need to contact the developer for an update or fix.  If the Finder is not working (how is it not working?), then you could try some of the tips in Understanding upgrade nightmares.
    (Note that my pages contain links to other pages that promote my services, and this should not be taken as an endorsement of my services by Apple.)

  • Ciscowork 3.2.1 daemon manager is not working after patch installation

    Hi Team
    Ciscowork 3.2.1 daemon manager is not working after patch installation.
    C:\Documents and Settings\Administrator>net start crmdmgtd
    The CiscoWorks Daemon Manager service is starting.
    The CiscoWorks Daemon Manager service could not be started.
    The service did not report an error.
    More help is available by typing NET HELPMSG 3534.
    Also I checked syslog.log and it is showing below error
    an 17 14:39:34 127.0.0.1 100: <28>   dmgt[1316]: 2507(W):Daemon manager anonymous user has not been set up: 00000569
    Please suggest.
    With Regards,
    neena

    During installation, an user casuser is created with certian security settings and if those are modified\removed, DM will not start.
    Following message will be seen in /log/syslog.log
    Daemon manager anonymous user has not been set up: 00000775
    To solve the issue, run resetcasuser.exe located under /setup.support  to  recreate the settings.
    Make sure casuser account is not locked out. Make sure casuser is a member of casusers group and is set to "password never expires".
    Additionally you can try to make casuser a member of adiministrators group.
    -Thanks

  • Ciscowork3.2.1 daemon manager is not working after patch installation

    Ciscowork 3.2.1 daemon manager is not working after patch installation
    Hi Team
    Ciscowork 3.2.1 daemon manager is not working after patch installation.
    C:\Documents and Settings\Administrator>net start crmdmgtd
    The CiscoWorks Daemon Manager service is starting.
    The CiscoWorks Daemon Manager service could not be started.
    The service did not report an error.
    More help is available by typing NET HELPMSG 3534.
    Also I checked syslog.log and it is showing below error
    an 17 14:39:34 127.0.0.1 100: <28>   dmgt[1316]: 2507(W):Daemon manager anonymous user has not been set up: 00000569
    I reset the casuser password and restarted the service but still no luck....
    Please suggest.
    With Regards,
    neena

    Neena,
    Check the properties of casuser under Start > Settings > Control Panel > Administrative Tools > Computer Management > Local Users and Groups > Users and make sure it is not disabled or locked out.  The only thing checked should be "Password never expires".  Change anything required and reset casuser.

  • My network is not working i am in ghana and i use MTN  network but it is not working why is it like that

    my network is not working i am in ghana and i use MTN  network but it is not working why is it like that... pls get back to me now

    It sounds as if you need to call your mobile carrier.

  • Error code "A valid key code to use the Business View Manager is not found"

    Hello.
    I am trying to resolve this message in the Business View Manager. The message of " A valid key code to use the Business View Manager is not found" appears when accessing a folder in the Repositiry Explorer. I have admin rights for View, Edit and Set Security.
    What am I doing wrong?

    Try running this query in the CMS Query Builder tool:
    Select * from CI_SystemObjects where si_id = 4
    When the query returns, look for the attribute "SI_CAN_USE_METADATA" and see if its set to false. Or see if something else in there is set to false that looks more suitable.  Your keycode might have the BusinessView manager locked out.  The error sounds more like a keycode restriction than a permissions issue with security.

  • Use member on data form does not work

    Hello,
    "Use member on data" option does not work on composite Data Form. Business rule associated with composite form.
    Who is resolve this problem?
    Version hyperion: 11.1.2
    Thanks

    I don't have a solution for you but more steps to solve the problem
    You are ultimately on the right track in some ways but break it down into it's components.
    The problem could like in the business rule, the form connection, the variables, even the order of operations could all be in play.
    So I would strip this baby down to its bare bones then build it back up.
    1) Run the business rule. Each one separately and only after the previous ones is complete without variables and without touching the form
    Is it successful: go to 2
    If it isn't successful: trouble shoot the calc and or try running in EAS natively to see if that gives you ideas
    2) Run the calc outside the form but with variables included. Did it prompt you correctly.
    Is it successful: go to 3
    If it isn't. What is wrong with the variable
    3) Now attach it to the form but don't hide the prompts
    Still good go to 4
    4) hide the prompts and run on save
    And if it fails on step four then it's not picking up the right variables in the prompt. And you need to look at why it wouldn't grab the right item.
    This will isolate your problem for you and give you steps to fix it. Ultimately 99% of the time something did change in the structure for example that is impacting the calc. And when you isolate the problem this will reveal itself quite quickly.

  • BI Administrator error: Session Management will not work

    Hi!
    I am about to set up BI Administrator Addon in SAP Portal. All the configuration steps seems to be ok.
    Unfortunately when I try to start some of applications of BI Administrator I get the following error:
    Session Management will not work.
    Please check the DSM log file for details
    Question:
    How can I solve this problem?
    Thank you very much!
    regards

    Hi
    This error means--Please notify us of this problem by submitting an IT Service Request (Please Note: In order to log into the Infra system, you will need to preface your NKU account with nku\.  For example, if your user name is smithj7, the "User Name" field would need to be populated with nku\smithj7.)
    under the problem type "SAP BW/Portal.
    Much of EP / BASIS issue.
    Hope it helps

Maybe you are looking for