Enabling SSL on Messaging server

Objective: Turning ON POPS, SMTPS and HTTPS.
What is done: Self-signed certificates created
Messaging Version: 6.2 (JES4)
Question: What is the next step to enable SSL on POP, SMTP and HTTP (configutil parameters, channel definition...)?
thx

I strongly suggest that you read and follow the documentation.
http://docs.sun.com/app/docs/doc/819-2650/6n4u4dtu1?a=view

Similar Messages

Enabling ssl on Weblogic server 5.1 using Verisign certificate.

"Hi,I am trying to enable ssl in Weblogic server 5.1The properties set in my properties file areweblogic.security.certificate.server=servercert.pem(sent from the verisign via email)weblogic.security.key.server=cp8212-2d2-key.der(generated by the Certificate Servlet of Weblogic Server)

"Hi,I am trying to enable ssl in Weblogic server 5.1The properties set in my properties file areweblogic.security.certificate.server=servercert.pem(sent from the verisign via email)weblogic.security.key.server=cp8212-2d2-key.der(generated by the Certificate Servlet of Weblogic Server)

Enabling SSL using Demo keystores

Hi All,
I am trying to enable SSL for SOA server managed by a weblogic server. I have followed the steps in documentation correctly still I am not able to start the SSL. I run the debug mode for the SSL and here is my log file. Any pointers regarding this will be useful
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124544> <BEA-000000> <SSLContextManager: initializing SSL context for channel DefaultSecure>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124544> <BEA-000000> <SSL enableUnencryptedNullCipher= false>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124544> <BEA-000000> <SSLContextManager: loading server SSL identity>
####<May 5, 2010 2:15:24 PM IST> <Notice> <Security> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <> <1273049124544> <BEA-090171> <Loading the identity certificate and private key stored under the alias DemoIdentity from the jks keystore file C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\DemoIdentity.jks.>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Loaded public identity certificate chain:>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=CALTP8BB14, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US; Issuer: CN=CertGenCAB, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RSA/ECB/NoPadding>
####<May 5, 2010 2:15:24 PM IST> <Notice> <Security> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <> <1273049124560> <BEA-090169> <Loading trusted certificates from the jks keystore file C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\DemoTrust.jks.>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <SSLContextManager: loaded 4 trusted CAs from C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\DemoTrust.jks>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=CACERT, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US; Issuer: CN=CACERT, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California, C=US; Issuer: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California, C=US; Issuer: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=CertGenCAB, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US; Issuer: CN=CertGenCAB, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US>
####<May 5, 2010 2:15:24 PM IST> <Notice> <Security> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <> <1273049124560> <BEA-090169> <Loading trusted certificates from the jks keystore file C:\Oracle\MIDDLE~1\JDK160~1\jre\lib\security\cacerts.>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <SSLContextManager: loaded 63 trusted CAs from C:\Oracle\MIDDLE~1\JDK160~1\jre\lib\security\cacerts>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE; Issuer: CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=America Online Root Certification Authority 2, O=America Online Inc., C=US; Issuer: CN=America Online Root Certification Authority 2, O=America Online Inc., C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP; Issuer: OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=America Online Root Certification Authority 1, O=America Online Inc., C=US; Issuer: CN=America Online Root Certification Authority 1, O=America Online Inc., C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Entrust.net Client Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/Client_CA_Info/CPS incorp. by ref. limits liab., O=Entrust.net, C=US; Issuer: CN=Entrust.net Client Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/Client_CA_Info/CPS incorp. by ref. limits liab., O=Entrust.net, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US; Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA; Issuer: [email protected], CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE; Issuer: CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network; Issuer: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at www.camerfirma.com/address), C=EU; Issuer: CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at www.camerfirma.com/address), C=EU>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US; Issuer: CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=AddTrust Class 1 CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE; Issuer: CN=AddTrust Class 1 CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US; Issuer: CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA; Issuer: [email protected], CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE; Issuer: CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US; Issuer: CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE; Issuer: CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE; Issuer: CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network; Issuer: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US; Issuer: CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US; Issuer: OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US; Issuer: CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA; Issuer: [email protected], CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US; Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=AddTrust Qualified CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE; Issuer: CN=AddTrust Qualified CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Entrust.net Client Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/GCCA_CPS incorp. by ref. (limits liab.), O=Entrust.net; Issuer: CN=Entrust.net Client Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/GCCA_CPS incorp. by ref. (limits liab.), O=Entrust.net>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US; Issuer: CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US; Issuer: CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US; Issuer: OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US; Issuer: CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH; Issuer: CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP; Issuer: OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP>

The other half of log file is as follows:
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA; Issuer: [email protected], CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US; Issuer: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Entrust.net Secure Server Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/SSL_CPS incorp. by ref. (limits liab.), O=Entrust.net; Issuer: CN=Entrust.net Secure Server Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/SSL_CPS incorp. by ref. (limits liab.), O=Entrust.net>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2; Issuer: CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=GeoTrust Global CA, O=GeoTrust Inc., C=US; Issuer: CN=GeoTrust Global CA, O=GeoTrust Inc., C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US; Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at www.camerfirma.com/address), C=EU; Issuer: CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at www.camerfirma.com/address), C=EU>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US; Issuer: CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB; Issuer: CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH; Issuer: CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE; Issuer: CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Equifax Secure Certificate Authority, O=Equifax, C=US; Issuer: OU=Equifax Secure Certificate Authority, O=Equifax, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU; Issuer: CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US; Issuer: OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net; Issuer: CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US; Issuer: OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US; Issuer: CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE; Issuer: CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Sonera Class2 CA, O=Sonera, C=FI; Issuer: CN=Sonera Class2 CA, O=Sonera, C=FI>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US; Issuer: CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US; Issuer: OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US; Issuer: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, ST=Western Cape, C=ZA; Issuer: CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, ST=Western Cape, C=ZA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Baltimore CyberTrust Code Signing Root, OU=CyberTrust, O=Baltimore, C=IE; Issuer: CN=Baltimore CyberTrust Code Signing Root, OU=CyberTrust, O=Baltimore, C=IE>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Sonera Class1 CA, O=Sonera, C=FI; Issuer: CN=Sonera Class1 CA, O=Sonera, C=FI>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: [email protected], CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA; Issuer: [email protected], CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH; Issuer: CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US; Issuer: CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US; Issuer: CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US; Issuer: OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1273049124560> <BEA-000000> <Subject: CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US; Issuer: CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US>
####<May 5, 2010 2:15:24 PM IST> <Info> <WebLogicServer> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <> <1273049124607> <BEA-000307> <Exportable key maximum lifespan set to 500 uses.>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <DynamicSSLListenThread[DefaultSecure] 21 cipher suites enabled:>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_WITH_RC4_128_MD5>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_WITH_RC4_128_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_WITH_AES_128_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_WITH_AES_256_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_WITH_3DES_EDE_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_WITH_DES_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DHE_RSA_WITH_DES_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_EXPORT1024_WITH_RC4_56_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_EXPORT_WITH_RC4_40_MD5>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_EXPORT_WITH_DES40_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DH_anon_WITH_3DES_EDE_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DH_anon_WITH_RC4_128_MD5>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DH_anon_WITH_DES_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DH_anon_EXPORT_WITH_RC4_40_MD5>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DH_anon_EXPORT_WITH_DES40_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DHE_RSA_EXPORT_WITH_DES_40_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_RSA_EXPORT_WITH_DES_40_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Debug> <SecuritySSL> <CALTP8BB14> <soa_server1> <DynamicSSLListenThread[DefaultSecure]> <<WLS Kernel>> <> <> <1273049124622> <BEA-000000> <TLS_DH_anon_EXPORT_WITH_DES_40_CBC_SHA>
####<May 5, 2010 2:15:24 PM IST> <Notice> <Server> <CALTP8BB14> <soa_server1> <[ACTIVE] ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <> <1273049124731> <BEA-002613> <Channel "DefaultSecure" is now listening on 10.227.32.125:8002 for protocols iiops, t3s, CLUSTER-BROADCAST-SECURE, ldaps, https.>

Sapwebdispatcher: ERROR: Connection to message server failed

Hi Team,
We have been facing an issue on the webdispatcher. Web-disaptcher is notable to communicate with the Message Server[PRD-XI].
=====================
Environment: Set-up =
=====================
1. The Webdispatcher is in DMZ. We have opened the port 8100 at the firewall.
==========================================================================
ERROR MESSAGE
==========================================================================
[Thr 2058] Fri Jan 11 18:53:27 2008
[Thr 2058] *** ERROR => NiBufIConnect: non-buffered connect pending after
5000ms (hdl 4;10.1.10.56:8100) [nibuf.cpp 4611]
[Thr 2058] *** ERROR => Connection request from (-1/65535/0) to host:
10.1.10.56, service: 8100 failed (NIECONN_REFUSED)
[icxxconn_mt.c 2738]
[Thr 2058] *** ERROR => IcmConnClientRqCreate() failed (rc=-8)
[icrxx_mt.c 5100]
[Thr 2058] *** ERROR => Could not connect to SAP Message Server at
10.1.10.56. URL=/msgserver/text/logon?version=1.2 [icrxx_mt.c 2459]
[Thr 2058] *** ERROR => rc=-1, HTTP response code: 0 [icrxx_mt.c 2460][Thr 2058] *** ERROR => see also OSS note 552286 [icrxx_mt.c 2461]
==========================================================================
SAPWEBDISPATCHER VERSION DETAILS:
==========================================================================
wd011:wpiadm 73> sapwebdisp -v
SAP Web Dispatcher Version 7.00.10, multithreaded, ASCII, 64 BIT
kernel information
system name =
kernel release = 700
database library =
compiled on = AIX 2 5 005DD9CD4C00
compile time = May 19 2007 01:59:47
update level = 0
patch number = 110
source id = 0.111
supported environment
operating system
AIX 1 5
AIX 2 5
AIX 3 5
=============================================================================
TEST OUTPUT
==========================================================================
wd011:wpiadm 71> sapwebdisp -bootstrap
SAP Web Dispatcher Bootstrap
============================
This bootstrap will perform the following steps:
1. create profile file "sapwebdisp.pfl"for SAP Web Dispatcher (if not
already existing)
2. create user for web based administration in file "icmauth.txt"(if notalready exisiting)
3. start SAP Web Dispatcher with the created profile
After the bootstrap you can use the web based administration
Generating Profile "sapwebdisp.pfl"
Hostname of Message Server (rdisp/mshost): 10.1.10.56
HTTP Port of Message Server (ms/http_port): 8100
Checking connection to message server...
ERROR: Connection to message server failed: NIECONN_REFUSED
Do you want to continue with these settings? no
==========================================================================
BACK-END APPLICATION MESSAGE SERVER DETAILS: SID: PPI [PI/XI]
==========================================================================
icm/server_port_0 PROT=HTTP,PORT=80$$
ms/server_port_0 PROT=HTTP,PORT=81$$
trc file: "dev_ms", trc level: 1, release: "700"
[Thr 1] Thu Jan 3 15:31:05 2008
[Thr 1] WLM Tag 'PPI/MSG' successfully set for this process
[Thr 1] MsSSetTrcLog: trc logging active, max size = 20971520 bytes
systemid 324 (IBM RS/6000 with AIX)
relno 7000
patchlevel 0
patchno 110
intno 20050900
make: multithreaded, Unicode, 64 bit, optimized
pid 2519162
[Thr 1] ***LOG Q01=> MsSInit, MSStart (Msg Server 1 2519162)
[msxxserv_mt. 1824]
[Thr 1] SigISetDefaultAction : default handling for signal 20
[Thr 1] load acl file = /usr/sap/PPI/SYS/global/ms_acl_info
[Thr 1] MsGetOwnIpAddr: my host addresses are :
[Thr 1] 1 : [10.1.10.56] pi100 (HOSTNAME)
[Thr 1] 2 : [127.0.0.1] loopback (LOCALHOST)
[Thr 1] 3 : [10.1.99.4] pi100v (NILIST)
[Thr 1] MsHttpInit: full qualified hostname = pi100
[Thr 1] HTTP logging is switch off
[Thr 1] set HTTP state to LISTEN
[Thr 1] ms/icf_info_server : deleted
[Thr 1] *** I listen to port sapmsPPI (3600) ***
[Thr 1] *** I listen to internal port 3900 (3900) ***
[Thr 1] *** HTTP port 8100 state LISTEN ***
[Thr 1] CUSTOMER KEY: >R1306811094<
[Thr 1] Thu Jan 3 15:31:28 2008
[Thr 1] MsHttpReadUrl2: H-1 url = /sap/public/icf_info/urlprefix (403
Forbidden)
[Thr 1] MsHttpReadUrl2: H-1 url = /sap/public/icf_info/logon_groups (403
Forbidden)
======================+++++++++++++++++++++++++++==============================
Please find the attached file for a better understanding of the trace file.
A quick action on this would be much appreciated.
Please let me know for any information required.
Thank you.
Regards,
~sagar

Vipin,
I don't have access to our firewall myself to confirm what ports and services we opened (I worked with our Network Operations team to get this done), but if I recall correctly, it was pretty limited, just http and https over tcp ports 80, 443, 8100, and 8101. Probably could even restrict that to just https over 443 and 8101. However, from your configuration, you don't yet have your web dispatcher configured to talk to your message server over https, only http. I would recommend that you get the web dispatched completely configured and working in as close to your final desired configuration as possible while keeping it inside your firewall, not your dmz. Then move it to the dmz and see what breaks, and that way you know it's just the firewall that needs configuration at that point.
To configure the SSL termination, the following are the parameters required and the way that I configured them in our scenario (which terminates incoming SSL requests and re-encrypts them when sending them on to the backend, and also uses SSL for message server communication):
rdisp/mshost = mshost.domain.org
ms/https_port = 8101
wdisp/server_info_protocol = https
wdisp/group_info_protocol = https
wdisp/url_map_protocol = https
icm/server_port_1 = PROT=HTTPS,PORT=443,TIMEOUT=30,PROCTIMEOUT=600
icm/server_port_2 = PROT=HTTPS,PORT=8101,TIMEOUT=30,PROCTIMEOUT=600
icm/host_name_full = wdhost.domain.org (note, use the externally visible name as registered on your SSL certificate for web dispatcher here; does not need to match the actual machine hostname, but must be resolvable in external DNS)
icm/HTTP/admin_0 = PREFIX=/sap/admin,DOCROOT=\usr\sap\RW1\W00\data\icmanroot/admin,AUTHFILE=\usr\sap\RW1\SYS\global\security\data\icmauth.txt,PORT=8101
ssl/ssl_lib = $(DIR_EXECUTABLE)\sapcrypto.dll
ssl/server_pse = $(DIR_INSTANCE)\sec\SAPSSLS.pse
ssl/client_pse = $(DIR_INSTANCE)\sec\SAPSSLC.pse
wdisp/ssl_encrypt = 2
wdisp/ssl_auth = 1
is/HTTP/show_detailed_errors = FALSE
wdisp/permission_table = $(DIR_INSTANCE)\sec\ptab
On the backend host I have the following parameters:
sec/libsapsecu = \usr\sap\RP1\DVEBMGS00\exe\sapcrypto.dll
ssl/ssfapi_lib = \usr\sap\RP1\DVEBMGS00\exe\sapcrypto.dll
ssl/ssl_lib = \usr\sap\RP1\DVEBMGS00\exe\sapcrypto.dll
ssf/name = SAPSECULIB
icm/server_port_2 = PROT=HTTPS,PORT=443,PROCTIMEOUT=-1
ms/server_port_1 = PROT=HTTPS,PORT=8101
Naturally, a server certificate is configured on the backend that the web dispatcher trusts (it can be an internally generated certificate; the outside public just needs to trust the web dispatcher's certificate, so that one should come from a recognized CA). Port 8101 is NOT open from the outside, just from the dmz and only to/from the web dispatcher host (this does allow me to use the webadmin interface from the inside). The https service also has to be activated on the backend in SMICM.
There's good advice about security setup for the web dispatcher in Note 870127, and troubleshooting advice in the Note mentioned in your tracefile output, 552286. Fairly complete documentation is in the online help at http://help.sap.com/saphelp_nw70/helpdata/en/de/89023c59698908e10000000a11402f/frameset.htm. Note 538405 is also good, more for performance configuration than security.
I hope you find this helpful.
--Matt

Issue with one of the Managed server while enabling SSL.__ Issue Resovled

Weblogic version:wls 8.1sp6
SSL: internal
Environment:
1 AdminServer and 2 Managed servers. Admin and M1 are on same host. M2 is on different host. We have enabled SSL on M1 & M2 only. Configuration of M1 & M2 are identical. After restarting the servers M1 has no issue with SSL but M2 throws javax.net.ssl.SSLKeyException as shown below,
<Aug 4, 2008 12:29:01 PM BST> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>
<Aug 4, 2008 12:29:02 PM BST> <Info> <WebLogicServer> <BEA-000213> <Adding address: 10.96.201.249 to licensed client list>
<Aug 4, 2008 12:29:09 PM BST> <Notice> <Security> <BEA-090171> <Loading the identity certificate stored under the alias wpy-euq02 from the JKS keystore file /home/lonwpyq/ssl_cert/WPY_PAYROLLSOLUTIONSKeystore.jks.>
<Aug 4, 2008 12:29:09 PM BST> <Notice> <Security> <BEA-090170> <Loading the private key stored under the alias wpy-euq02 from the JKS keystore file /home/lonwpyq/ssl_cert/WPY_PAYROLLSOLUTIONSKeystore.jks.>
<Aug 4, 2008 12:29:09 PM BST> <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
<Aug 4, 2008 12:29:09 PM BST> <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
<Aug 4, 2008 12:29:09 PM BST> <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
<Aug 4, 2008 12:29:09 PM BST> <Error> <Cluster> <BEA-000141> <TCP/IP socket failure occurred while fetching statedump over HTTP from -6401422690190304510S:lonlxwebhost99:[16544,16544,16042,16042,16544,16042,-1,0,0]:etg:lonwpyq_16543_1.
javax.net.ssl.SSLKeyException: [Security:090773]The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException(Unknown Source)
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
at com.certicom.tls.record.WriteHandler.write(Unknown Source)
at com.certicom.io.OutputSSLIOStreamWrapper.write(Unknown Source)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:66)
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:124)
at java.io.FilterOutputStream.flush(FilterOutputStream.java:123)
at weblogic.net.http.HttpURLConnection.writeRequests(HttpURLConnection.java:122)
at weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.java:322)
at weblogic.cluster.HTTPExecuteRequest.connect(HTTPExecuteRequest.java:73)
at weblogic.cluster.HTTPExecuteRequest.execute(HTTPExecuteRequest.java:121)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:224)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:183)>
Please let me know where I am going wrong. Thnx in advance
Message was edited by:
Shashi_sr

Solution given by BEA Engineer:
<Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
The reason for this was
The CA Certificate was missing a required bit (according to RFC 3280).
keyEncipherment bit is not in the KeyUsage and KeyUsage is marked as critical.
As per RFC:
The keyEncipherment bit is asserted when the subject public key is
used for key transport. For example, when an RSA key is to be
used for key management, then this bit is set.
According to RFC3280, when the key will be used to encrypt other keys that are send over the wire ("key transport") the keyEncipherment bit of the KeyUsage extension must be set. If the KeyUsage extension is critical, the SSL certificate validation will check that the key can be used in the key agreement. That is, that the key can be used to encrypt the symmetric public key.
Your KeyUsage only contains the following bits:
[4]: ObjectId: 2.5.29.15 Criticality=true KeyUsage [
DigitalSignature
Key_CertSign
Crl_Sign
Since it is marked Critical, it MUST have the keyEncipherment bit.
Otherwise, it should not be marked as Critical.
So the three solutions that should work are
1) Remove keyUsage
2) Don't mark keyUsage as critical
3) If keyUsage is critical, make sure keyEncipherment bit is set.

How do I enable SSL to serve swfs and non video content in FMS 4.5

I'm running FMS 4.5 with the built in Apache server on a Windows 2003 server running SP2. Our users are complaining that embedded videos in Chrome aren't displaying properly because the SWFs and some of the non video content are being delivered over http instead of https. I'm having trouble finding any documentation on how to add an SSL cert to the Apache server and enabling it to serve content over 443. I've requested my cert and am following my CA's docs on adding the cert to Apache, but I'm not seeing the VirtualDirectory referenced in the httpd.conf file. I'm relatively new to Apache configuration, so please include as much detail as possible in your answer. Thanks in advance for any assistance.

Look for httpd-hls-secure.conf file in AMS(FMS) Apache Bundle. httpd.conf includes this file. This enables SSL for key delivery for HLS. You may like to do the same for other cases.
Other than this, you have to enable the LoadModule mod_ssl in httpd.conf.

Enable SSL between oracle JDBC Connection in weblogic server.

Hi ALL,
I have an requirement to enable SSL Mechanism in weblogic JDBC Connection Pool.we are using Oracle9i Enterprise Edition Release 9.2.0.7.0 - 64bit Production and Driver as "jdbc:oracle:thin@..." / oracle.jdbc.OracleDriver.
weblogic server 8.1 SP4
can anybody know what are the steps / configuration has to be done for enable Oracle Advanced Security encryption on the JDBC Oracle Thin driver with a WebLogic JDBC Connection Pool.
Thanks,
Karthik,

Hi,
I changed the code as given below. Still getting the same error. Can I migrate my question to jdbc section? I am new to this forum.
import java.sql.*;
public class jdbc {
public static void main(String[] args) throws ClassNotFoundException, SQLException
Class.forName("oracle.jdbc.driver.OracleDriver");
String url = "jdbc:oracle:thin:@localhost:1521:xe";
Connection conn =
DriverManager.getConnection(url,"jestin","jj");
conn.setAutoCommit(false);
Statement stmt = conn.createStatement();
ResultSet rset =
stmt.executeQuery("select BANNER from SYS.V_$VERSION");
while (rset.next()) {
System.out.println (rset.getString(1));
stmt.close();
System.out.println ("Ok.");
jestinjoy@debian:~/java$ javac -classpath /usr/lib/java/ jdbc.java
jestinjoy@debian:~/java$ java jdbc
Exception in thread "main" java.lang.ClassNotFoundException: oracle.jdbc.driver.OracleDriver
     at java.net.URLClassLoader$1.run(URLClassLoader.java:202)
     at java.security.AccessController.doPrivileged(Native Method)
     at java.net.URLClassLoader.findClass(URLClassLoader.java:190)
     at java.lang.ClassLoader.loadClass(ClassLoader.java:307)
     at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:301)
     at java.lang.ClassLoader.loadClass(ClassLoader.java:248)
     at java.lang.Class.forName0(Native Method)
     at java.lang.Class.forName(Class.java:169)
     at jdbc.main(jdbc.java:7)
same error when I give the command without classpath

Message server SSL only Java

Hallo,
I need to setup https for message server of ab only Java installation 7.0
How can I do?
Do I need to use sapcrypto library as for the ABAP stack?
Thanks.
Mario

Hi,
now, sapcrypto lib is correctly used.
The problem is on SAPSSLS.PSE I think.
Th log file is dev_ms:
trc file: "dev_ms", trc level: 1, release: "700"
[Thr 2100] Wed Apr 01 09:59:03 2009
[Thr 2100] MsSSetTrcLog: trc logging active, max size = 20971520 bytes
systemid 562 (PC with Windows NT)
relno 7000
patchlevel 0
patchno 163
intno 20050900
make: multithreaded, Unicode, 64 bit, optimized
pid 3932
[Thr 2100] ***LOG Q01=> MsSInit, MSStart (Msg Server 1 3932) [msxxserv.c 1835]
[Thr 2100] load acl file = Z:\usr\sap\BJS\SYS\global\ms_acl_info.DAT
[Thr 2100] MsGetOwnIpAddr: my host addresses are :
[Thr 2100] 1 : [172.16.1.60] SBJSVIVV01.abc.net (HOSTNAME)
[Thr 2100] 2 : [127.0.0.1] SBJSVIVV01.abc.net (LOCALHOST)
[Thr 2100] MsHttpInit: full qualified hostname = SBJSVIVV01.abc.net
[Thr 2100] HTTP logging is switch off
[Thr 2100] set HTTP state to LISTEN
[Thr 2100] =================================================
[Thr 2100] = SSL Initialization on PC with Windows NT
[Thr 2100] = (700_REL,Aug 24 2008,mt,ascii-uc,SAP_UC/size_t/void* = 16/64/64)
[Thr 2100] profile param "ssl/ssl_lib" = "Z:\usr\sap\BJS\SCS01\exe\sapcrypto.dll"
 resulting Filename = "Z:\usr\sap\BJS\SCS01\exe\sapcrypto.dll"
[Thr 2100] = found SAPCRYPTOLIB 5.5.5C pl24 (Jun 11 2008) MT-safe
[Thr 2100] = current UserID: D-VIMAR\SAPServiceBJS
[Thr 2100] = using SECUDIR=Z:\usr\sap\BJS\SCS01\sec
[Thr 2100] *** ERROR => secudessl_Create_SSL_CTX(): PSE "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse" not found! [ssslsecu.c 1354]
[Thr 2100] secudessl_Create_SSL_CTX: SSL_CTX_set_default_pse_by_name() failed --
secude_error 4129 (0x00001021) = "The PSE does not exist"
[Thr 2100] >> -
Begin of Secude-SSL Errorstack -
>>
[Thr 2100] ERROR in SSL_CTX_set_default_pse_by_name: (4129/0x1021) The PSE does not exist : "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse"
ERROR in ssl_set_pse: (4129/0x1021) The PSE does not exist : "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse"
ERROR in af_open: (4129/0x1021) The PSE does not exist : "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse"
ERROR in secsw_open: (4129/0x1021) The PSE does not exist : "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse"
ERROR in secsw_open_pse_or_extension: (4129/0x1021) The PSE does not exist : "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse"
ERROR in sec_get_PSEtype: (4129/0x1021) The PSE does not exist : "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse"
[Thr 2100] << -
End of Secude-SSL Errorstack -
[Thr 2100] *** ERROR => SapISSLAddCredential(): Error SSSLERR_PSE_ERROR trying to create SERVER Credential
 for "Z:\usr\sap\BJS\SCS01\sec\SAPSSLS.pse" [ssslxxi.c 2278]
[Thr 2100] *** ERROR => Initialization of SSL library failed -- NO SSL available!
[Thr 2100] =================================================
[Thr 2100] <<- ERROR: SapSSLInit(read_profile=1)==SSSLERR_PSE_ERROR
[Thr 2100] *** ERROR => MsHttpsInit: SapSSLInit (rc=-40): SSSLERR_PSE_ERROR [msxxhttp.c 2999]
[Thr 2100] MsHttpOwnDomain: own domain[1] = abc.net
[Thr 2100] ms/icf_info_server : deleted
[Thr 2100] *** I listen to internal port 3901 (3901) ***
[Thr 2100] *** HTTP port 8101 state LISTEN ***
[Thr 2100] CUSTOMER KEY: >H1211753310<
[Thr 2100] Wed Apr 01 09:59:35 2009
[Thr 2100] MsJ2EE_AddLoggedInNode: add node [2590400] into logged in list
[Thr 2100] MsJ2EE_AddLoggedInNode: add node [2590450] into logged in list
Thanks.

Strange error when enabling SSL on Oracle HTTP Server

Hi,
In our production environment Oracle HTTP Server starts fine when SSL is disabled.
We've enabled SSL in our dev/uat environments using instructions from the Oracle Documentation. It was pretty straightforward.
When i tried to do the same in our production environment, the Oracle HTTP Server wouldnt restart. I've had a look around the forums and havent seen anyone report the same error we are seeing in the logfile.
$ORACE_HOME/opmn/bin/opmnctl verbose startproc ias-component=HTTP_Server
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/html
Response: Ping succeeded.
opmnctl: starting opmn managed processes...
HTTP/1.1 204 No Content
Content-Length: 718
Content-Type: text/html
Response: 0 of 1 processes started.
<?xml version='1.0' encoding='ISO-8859-1'?>
<response>
<opmn id="ubrf1200:6201" http-status="204" http-response="0 of 1 processes started.">
<ias-instance id="IAS-X-ubrf1200.6299">
<ias-component id="HTTP_Server">
<process-type id="HTTP_Server">
<process-set id="HTTP_Server">
<process id="350814320" pid="29207" status="Stopped" index="1" log="$ORACE_HOME/opmn/logs/HTTP_Server~1" operation="request" result="failure">
<msg code="-21" text="failed to start a managed process after the maximum retry limit">
</msg>
</process>
</process-set>
</process-type>
</ias-component>
</ias-instance>
</opmn>
</response>
The HTTP_Server~1 log contains the below error:
09/08/16 13:24:40 Start process
$ORACLE_HOME/Apache/Apache/bin/apachectl startssl: execing httpd
VirtualHost configuration:
127.0.0.1:7201 127.0.0.1 ($ORACLE_HOME/Apache/Apache/conf/dms.conf:21)
I've compared dms.conf from all 3 of dev/uat/prod
diff dev-dms.conf dms.conf
15c15
< Redirect /dms0/AggreSpy http://127.0.0.1:7200/dmsoc4j/AggreSpy
Redirect /dms0/AggreSpy http://127.0.0.1:7201/dmsoc4j/AggreSpy
18,19c18,19
< Listen 127.0.0.1:7200
< OpmnHostPort http://127.0.0.1:7200
Listen 127.0.0.1:7201
OpmnHostPort http://127.0.0.1:7201
21c21
< <VirtualHost 127.0.0.1:7200>
<VirtualHost 127.0.0.1:7201>30c30
No Apache logs are being written to when we try starting the Oracle HTTP Server with ssl enabled.
Has anyone experienced this problem before? Any idea how we can get this working?
Thanks,
Stephen

Noticed that when it starts with apachectl startssl, it doesnt like any <VirtualHost directive
The line in the dms.conf file that it errors out at is :
<VirtualHost 127.0.0.1:7201>
When i added a redirect the httpd.conf file, it errors out at the <VirtualHost line also
Any idea why the Oracle HTTP Server wouldnt like <VirtualHost directives when running startssl?

Advanced Security Server /Entrust-enabled SSL

We are expermenting to configure Advanced Security Server to work with Entrust. I had a quick look on Oracle 9i Advanced Security Server /Administrators Guide, and found a lot more detailed instructions about configuring Entrust-enabled SSL.. In addition, there are samples of how sqlnet.ora will look like. The question: Can we use 9i manual to configure Entrust-enabled SSL for Oracle 817? If we can't use the 9i manual, is there any addendum document to the Chapter 10-Enabling Entrust
Authentication in Oracle8i Advanced Security Administrators Guide, other than CR #281745 ....
null

Hi Justin,
The Visual Basic application software uses Oracle OLEDB Provider 9.2.0.7.0
We use various classes available in OLEDB for acessing the database. For example, the connection string looks like the following:
Provider=oraoledb.oracle; data source=oraserve; user id=myuserid; password=mypasswd;
The application uses ADODB objects to access data.
Hope this clarifies
Regards,
SAM

Itunes messages "Could not enable ssl"

When I connect my iPhone, I get lots of "could not enable ssl" messages in the message log. However, sync does work. The sender pid is [0x0-0x7c07c].com.apple.itunses[1087]. Any idea?

Some more information on your computer might help you get an answer, like what Operating System you run and your software version, but also if you turn off Parental controls it sometimes solves the problem. Hope I helped!

Messaging Server 3.x: Is there an option to enable and disable the ETRN function?

Is there an option in Messaging Server to enable and disable the ETRN function?

Yes. You can add the option for enabling and disabling the ETRN function by
modifying the code in the file 

server-root
bin/mail/admin/html/SMTPChannelOptions.html

The original code to be modified will appear as follows: 



Yes

No

Modify the code to look like this: 



Yes

No


Yes

No

Making these changes will create an extra option to enable and disable the ETRN
function on the SMTP Options page in the Administration Server.

Yes, this is possible. In Cisco Webex Administration->Settings->Audio you can choose your audio (system-wide) options:
WebEx Audio:
Call In and Call Me service – Enables users to attend a teleconference by calling specified phone numbers or by receiving a Call Me call from the system.
Call In – Enables users to attend a teleconference by calling specified phone numbers.
OFF – Disables all calling features.
Voice connection using computer
ON
OFF
See also this section in the administartion guide.

Messaging Server: Problem Adding SSL Certificate

We have a problem importing a CA certificate into Messaging Server 7 on Solaris 10 x86.
Platform
uname -a
SunOS mail1 5.10 Generic_138889-03 i86pc i386 i86pcMessaging Server Version
imsimta version
Sun Java(tm) System Messaging Server 7.0-3.01 64bit (built Dec 9 2008)
libimta.so 7.0-3.01 64bit (built 09:24:13, Dec 9 2008)We have created a certificate database and generated a certificate request, as follows:
msgcert generate-certDB
msgcert request-cert --name mail.domain.xxx --org "University of XXX" --org-unit ITS --city XXX --state "XXX" --country GB -F ascii -o /tmp/ssl.csrHowever, when we come to import the CA-supplied certificate we get the following error.
msgcert add-cert Server-Cert /tmp/mail1.crt
Enter the certificate database password:
Unable to find private key for this certificate.
Failed to add the certificate.I'm confused. What does the msgcert request-cert command use as a private key when generating the certificate request? Should I have used openssl to generate the certificate request with a known private key?
Thanks
Alan

I solved the problem by converting certificate to pkcs#12 format and importing it.
openssl pkcs12 -export -in cert.pem -inkey private.key -out cert.pkcs12 -name Server-Cert
/opt/sun/comms/messaging64/bin/msgcert add-cert Server-Cert cert.pkcs12Alan

Enabling SSL for Oracle Enterprise Manager 10.1.3.1 is Failing!!!

Hi All,
I have followed the steps described in
http://download-uk.oracle.com/docs/cd/B31017_01//core.1013/b28940/em_app.htm#BABCEEAH.
However when I am trying to start the application server using 'opmnctl startall' the server is not starting and some timeout is getting generated in the log file.
Is it that enabling SSL will only make the EM console secured? Then how to enable SSL for other soa components like - BPEL,ESB,OWSM? Are there any documentations available?
Also please let me know how can I enable SSL for Oracle Application server console?
Please any advice will be appreciated. I am in the middle of a project delivery.
Thanks

Hi,
Let me first highlight the installation that I have done. I have installed SOA components with 'basic installation' mode.
The log file under <ORACLE_SOA_HOME>/opmn/config/ has generated the following stack:-
08/07/25 11:03:34 Start process
08/07/25 11:03:37 WARNING: XMLApplicationServerConfig.overwriteSiteConfigPort Port assignment is ignored: web-site not found in the server OC4JServiceInfo id: default-web-site protocol: http hostname: null port: 8890 description: null
08/07/25 11:03:37 WARNING: XMLApplicationServerConfig.overwriteSiteConfigPort Port assignment is ignored: web-site not found in the server OC4JServiceInfo id: secure-web-site protocol: https hostname: null port: 1156 description: null
08/07/25 11:03:47 log4j:WARN No appenders could be found for logger (wsif).
08/07/25 11:03:47 log4j:WARN Please initialize the log4j system properly.
08/07/25 11:03:53 WARNING: OC4J Service: ascontrol-web-site with protocol: https and port: 1156 was not declared in opmn.xml
08/07/25 11:03:53 Oracle Containers for J2EE 10g (10.1.3.1.0) initialized
08/07/25 11:03:53 WARNING: OC4J will not send ONS ProcReadyPort messages to opmn for service: OC4JServiceInfo id: default-web-site protocol: http hostname: null port: 8890 description: null
08/07/25 11:03:53 default-web-site hostname was null
08/07/25 11:03:53 WARNING: OC4J will not send ONS ProcReadyPort messages to opmn for service: OC4JServiceInfo id: secure-web-site protocol: https hostname: null port: 1156 description: null
08/07/25 11:03:53 secure-web-site hostname was null
On the command prompt I am getting the following error:-
opmn id=CALTP8BB32:6203
0 of 1 processes started.
ias-instance id=home.CALTP8BB32.cts.com
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
ias-component/process-type/process-set:
default_group/home/default_group/
Error
--> Process (index=1,uid=301928631,pid=2944)
failed to start a managed process after the maximum retry limit
Log:
D:\product\SOASuite\opmn\logs\\default_group~home~default_group~1.log
--------------------------------------------------------------+---------
ias-component | process-type | pid | status
--------------------------------------------------------------+---------
OC4JGroup:default_group | OC4J:home | N/A | Down
ASG | ASG | N/A | Down
Please let me know where am I going wrong?
Thanks,
Mandrita.

Integrating calendar server with messaging server

hi all,
i have installed messaging server but am not able to bind messaging server and calendar server together.the calendar server does not start with ./start-cal command.i am attaching the ics.conf file below.
!!!! ics.conf Parameter Specification: You can have three kinds of records
!!!! #1) Uncommented Key: Starts with alphabet [a-z] and in the form a="b"
!!!! #2) Commented key: Start with !!<alphabet> OR !![a-z]
!!!! And in the form !!a="b" (min 7 chars length)
!!!! #3) Commented Lines: Starts with ! But not with !![a-z]
!!!! #4) Records other than types #1, #2, #3 will be ignored or won't be
!!!! processed e.g. blank lines, lines starting with non-alphabets etc..
!!!! All these parameters are SINGLE valued
!!!! Imaginary Domain Names siroe.com, varrius.com, florizel.com, and sesta.com
!!!! are used in the examples below.
! Description sent with insufficient disk space messages.
alarm.diskstat.msgalarmdescription = "percentage calendar partition diskspace available"
! Number of seconds between monitoring disk space.
alarm.diskstat.msgalarmstatinterval = "3600"
! Percentage of available disk space that triggers sending a warning message.
alarm.diskstat.msgalarmthreshold = "10"
! Whether alarm.diskavail.msgalarmthreshold is above or below percentage. -1 is below and 1 would be above.
alarm.diskstat.msgalarmthresholddirection = "-1"
! Number of hours between sending warning messages about insufficient disk space sent out.
alarm.diskstat.msgalarmwarninginterval = "24"
! Specifies the SMTP host for server alarms.
alarm.msgalarmnoticehost = "sonlinux.bg2iop.com"
! Specifies the SMTP port for server alarms.
alarm.msgalarmnoticeport = "25"
! Who are server alarms sent to?
alarm.msgalarmnoticercpt = "[email protected]"
! When server alarms are sent, who is the sender?
alarm.msgalarmnoticesender = "[email protected]"
! Default is "From: %s\nTo: %s\nSubject: ALARM: %s of \"%s\" is %u\n\n%s\n"
alarm.msgalarmnoticetemplate = ""
! Description sent with no service response messages.
alarm.responsestat.msgalarmdescription = "calendar service not responding"
! Number of seconds between monitoring services.
alarm.responsestat.msgalarmstatinterval = "3600"
! Only trigger sending a warning message if no service response.
alarm.responsestat.msgalarmthreshold = "100"
! Whether alarm.responsestat.msgalarmthreshold is above or below percentage. -1 is below and 1 would be above.
alarm.responsestat.msgalarmthresholddirection = "-1"
! Number of hours between sending warning messages about no service response sent out.
alarm.responsestat.msgalarmwarninginterval = "24"
! Enable (yes) or Disable (no) browser cache for performance reasons.
browser.cache.enable = "no"
! Retry time in seconds after a recoverable alarm delivery error.
caldb.berkeleydb.alarmretrytime = "300"
caldb.berkeleydb.archive.enable = "0"
! Interval between hotbackup or archivebackup in seconds
caldb.berkeleydb.archive.interval = "120"
! Maximum number of days of archivebackup
caldb.berkeleydb.archive.maxdays = "6"
! Minimum number of days of archivebackup
caldb.berkeleydb.archive.mindays = "3"
caldb.berkeleydb.archive.path = "/var/opt/sun/calendar/csdb/archive"
! Percentage threshold of allowable disk space usage
caldb.berkeleydb.archive.threshold = "70"
! Seconds between checkpointing.
caldb.berkeleydb.checkpointinterval = "60"
! Remove checkpoint files after synchronized? (yes/no)
caldb.berkeleydb.circularlogging = "yes"
! Milliseconds between checking database deadlocks.
caldb.berkeleydb.deadlockinterval = "100"
! Enable more advanced notifications - replyevent/refreshevent/replytodo/refreshtodo considered
! as advanced topics. By default, all these notifications will be published to
! modifyevent and modifytodo respectively. If it is enabled modifyevent will get only
! organizer updates to components and attendees replies and the refreshes triggered by replies
! to components will be published to the respective topics. (yes/no)
caldb.berkeleydb.ensmsg.advancedtopics = "no"
! Create an ENS message when a calendar is created? (yes/no)
caldb.berkeleydb.ensmsg.createcal = "no"
! Create an ENS message when an event is created? (yes/no)
caldb.berkeleydb.ensmsg.createevent = "no"
! Create an ENS message when a task is created? (yes/no)
caldb.berkeleydb.ensmsg.createtodo = "no"
! Create an ENS message when a calendar is deleted? (yes/no)
caldb.berkeleydb.ensmsg.deletecal = "no"
! Create an ENS message when an event is deleted? (yes/no)
caldb.berkeleydb.ensmsg.deleteevent = "no"
! Create an ENS message when a task is deleted? (yes/no)
caldb.berkeleydb.ensmsg.deletetodo = "no"
! Create an ENS message when a calendar is modified? (yes/no)
caldb.berkeleydb.ensmsg.modifycal = "no"
! Create an ENS message when an event is modified? (yes/no)
caldb.berkeleydb.ensmsg.modifyevent = "no"
! Create an ENS message when a task is modified? (yes/no)
caldb.berkeleydb.ensmsg.modifytodo = "no"
! Initial size of the in-memory Event Notification Server message queue. This queue stores all ENS messages other than alarm reminders.
caldb.berkeleydb.ensmsg.qsize = "10000"
! Create an ENS message when an event is refreshed? (yes/no)
caldb.berkeleydb.ensmsg.refreshevent = "no"
! Create an ENS message when a task is refreshed? (yes/no)
caldb.berkeleydb.ensmsg.refreshtodo = "no"
! Create an ENS message when an event is replied? (yes/no)
caldb.berkeleydb.ensmsg.replyevent = "no"
! Create an ENS message when a task is replied? (yes/no)
caldb.berkeleydb.ensmsg.replytodo = "no"
! Create an ENS message when a scheduling request written to the calendar is deleted? (yes/no)
caldb.berkeleydb.ensmsg.schedreq = "no"
! Physical path location of database event, task, and alarm files.
caldb.berkeleydb.homedir.path = "/var/opt/sun/calendar/csdb"
caldb.berkeleydb.hotbackup.enable = "0"
! Maximum number of days of hotbackup
caldb.berkeleydb.hotbackup.maxdays = "6"
! Path for archivebackup
!caldb.berkeleydb.archive.path
! Path for hobackup
!caldb.berkeleydb.hotbackup.path
! Enable/disable of archivebackup feature, yes/no
!caldb.berkeleydb.archive.enable
! Enable/disable of hotbackup feature, yes/no
!caldb.berkeleydb.hotbackup.enable
! Minimum number of days of hotbackup
caldb.berkeleydb.hotbackup.mindays = "3"
caldb.berkeleydb.hotbackup.path = "/var/opt/sun/calendar/csdb/hotbackup"
! Percentage threshold of allowable disk space usage
caldb.berkeleydb.hotbackup.threshold = "70"
! Max megabytes of checkpoint file.
caldb.berkeleydb.logfilesizemb = "10"
! Max threads of database.
caldb.berkeleydb.maxthreads = "10000"
! Megabytes of shared memory.
caldb.berkeleydb.mempoolsizemb = "4"
! Time before which to purge deletelog
caldb.berkeleydb.purge.deletelog.beforetime = "86400"
! Time interval between auto purge of deletelog
caldb.berkeleydb.purge.deletelog.interval = "86400"
! If "yes", open the database in readonly mode
caldb.berkeleydb.readonly = "no"
! Email of calendar database administrator.
caldb.calmaster = "[email protected]"
! Seconds between checkpointing.
caldb.cld.cache.checkpointinterval = "60"
! Remove checkpoint files after synchronized? (yes/no)
caldb.cld.cache.circularlogging = "yes"
!service.calendarsearch.ldap.primaryownersearchfilter = "(&(|(uid=*%s*)(cn=*%s*))(objectclass=icsCalendarUser))"
! Enables ("yes") or disables ("no") cld db cache
caldb.cld.cache.enable = "yes"
! Physical path location of cache database
caldb.cld.cache.homedir.path = "/var/opt/sun/calendar/csdb/cld_cache"
! Max megabytes of checkpoint file.
caldb.cld.cache.logfilesizemb = "10"
! Max threads of database.
caldb.cld.cache.maxthreads = "1000"
! Megabytes of shared memory.
caldb.cld.cache.mempoolsizemb = "4"
! Type of Calendar Lookup Database plugin to use ("local" "algorithmic" or "directory").
caldb.cld.type = "local"
! Count data base statistics? (yes/no)
caldb.counters = "yes"
! Maximum number of calendars with counters.
caldb.counters.maxinstances = "100"
! Maximum number of backlogged requests before the server obtains a new network connection.
caldb.dwp.connthreshold = "1"
! Initial number of connections for DWP client to make to each DWP host.
caldb.dwp.initconns = "2"
! Initial number of threads for handling DWP requests.
caldb.dwp.initthreads = "2"
! Maximum number of connections allowed to a DWP server.
caldb.dwp.maxcons = "1000"
! Maximum number of threads to service HTTP requests in csdwpd.
caldb.dwp.maxthreads = "1000"
! Specifies if the server performs MD5 hash checking of all DWP requests.
caldb.dwp.md5 = "n"
! IP address of a specified DWP server.
!!caldb.dwp.server.[hostname.xyz.com].ip = "a.b.c.d"
! Port number of a specified DWP server (Algorithmic CLD only).
!!caldb.dwp.server.[hostname.xyz.com].port = "59779"
! Default DWP server (LDAP CLD only), used if user's icsDWPhost value does not exist.
!!caldb.dwp.server.default = "hostname.xyz.com"
! Stack size for DWP threads.
caldb.dwp.stacksize = "65536"
! Process alarms on the alarm queue -- that is, store them in the alarm queue when an event/todo is saved
caldb.serveralarms = "1"
! Timeout for contacting ENS. If no response, we assume ENS is not running
caldb.serveralarms.acktimeout = "30"
! Dispatch -- that is, enable alarm dispatching. When an alarm trigger time arrives send out email or ENS message.
caldb.serveralarms.dispatch = "yes"
! Enable binary alarms. Used by csnotifyd and csadmind. (default: yes)
!caldb.serveralarms.binary.enable = "yes"
! Binary alarm url. Used by csnotifyd and csadmind. (default: enp:///ics/alarm)
!caldb.serveralarms.binary.url = "enp:///ics/alarm"
! Custom alarm url. Use this to get xml or calendar mime type contents
!caldb.serveralarms.url = "enp:///ics/customalarm"
! Custom alarm url contenttype. (text/xml or text/calendar)
!caldb.serveralarms.contenttype = "text/calendar"
! Dispatch type for Calendar Server alarms ("ens" o "smtp").
caldb.serveralarms.dispatchtype = "ens"
! Initial number of threads for the Event Notification Server.
caldb.serveralarms.initthreads = "0"
! Specifies how long, in seconds, the server will continue to try reconnecting to ENS before giving up. -1 means forever.
caldb.serveralarms.maxretrytime = "-1"
! Maximum number of threads for the Event Notification Server
caldb.serveralarms.maxthreads = "10"
! Time to sleep, in seconds, after a timeout connecting to ens before making another attempt to connect to ens
caldb.serveralarms.retryinterval = "5"
! Stack frame size for Event Notification Server threads.
caldb.serveralarms.stacksize = "65536"
! Total time, in seconds, to retry connecting to ENS on startup.
caldb.serveralarms.startupretrytime = "30"
! Send alarms to this SMTP host.
caldb.smtphost = "sonlinux.bg2iop.com"
! Specifies the directory in cal/bin/config containing the localized version of the files used to format email notifications.
caldb.smtpmsgfmtdir = "en"
! Specifies the SMTP port.
caldb.smtpport = "25"
! Event reminder format file.
calmail.eventreminder.fname = "mail_eventreminder.fmt"
! Event cancellation format file.
calmail.imipeventcancel.fname = "mail_eventcancel.fmt"
! Event CANCEL NOTIFICATION message format file
calmail.imipeventcancelnotification.fname = "mail_eventcancelnotification.fmt"
calmail.imipeventcancelnotificationrecur.fname = "mail_eventcancelnotificationrecur.fmt"
! Event NOTIFICATION message format file
calmail.imipeventnotification.fname = "mail_eventnotification.fmt"
calmail.imipeventnotificationrecur.fname = "mail_eventnotificationrecur.fmt"
! Event notification format file.
calmail.imipeventpublish.fname = "mail_eventpublish.fmt"
! Event REPLY message format file
calmail.imipeventreply.fname = "mail_eventreply.fmt"
! Event REQUEST message format file
calmail.imipeventrequest.fname = "mail_eventrequest.fmt"
! Task cancellation format file.
calmail.imiptodocancel.fname = "mail_todocancel.fmt"
! Task notification format file
calmail.imiptodopublish.fname = "mail_todopublish.fmt"
! Task REPLY message format file
calmail.imiptodoreply.fname = "mail_todoreply.fmt"
! Task REQUEST Message format file
calmail.imiptodorequest.fname = "mail_todorequest.fmt"
! Task reminder format file.
calmail.todoreminder.fname = "mail_todoreminder.fmt"
! Anonymous login CALID.
calstore.anonymous.calid = "anonymous"
! Does server support only two privacy types for components - PRIVATE (acts as confidential) /PUBLIC instead of PRIVATE/CONFIDENTIAL/PUBLIC
calstore.binaryprivacy.mode = "no"
! When creating new calendar of user, whether to lowercase calendar or not
! Also, when looking up calendar, whether to lowercase or not
calstore.calendar.create.lowercase = "n"
! For a newly created calendar, set the ACL to this
calstore.calendar.default.acl = "@@o^a^r^g;@@o^c^wdeic^g;@^a^fs^g;@^c^^g;@^p^r^g"
! Definition of the "owner" acl
calstore.calendar.owner.acl = "@@o^a^rsf^g;@@o^c^wdeic^g"
! Timezone ID used when importing files.
calstore.default.timezoneID = "America/New_York"
! Whether to filtering the private/confidential events on queries to server
calstore.filterprivateevents = "yes"
! Is user's default calendar included in user's freebusy-calendar-list or not
calstore.freebusy.include.defaultcalendar = "yes"
! Can user's default calendar be removed from user's freebusy-calendar-list or not
calstore.freebusy.remove.defaultcalendar = "no"
! Maximum number attendees to be allowed in a LDAP group when expanding event. Value of 0 means expand group entirely.
calstore.group.attendee.maxsize = "0"
! Maximum number of events created by recurrence
calstore.recurrence.bound = "60"
! Is user's default calendar included in user's subscribed-calendar-list or not
calstore.subscribed.include.defaultcalendar = "yes"
! Can user's default calendar be removed from user's subscribed-calendar-list or not
calstore.subscribed.remove.defaultcalendar = "no"
! For attendee calendar lookup, when encountering string that looks like (jdoe OR jdoe:tv), treat string as a userid (uid) when looking-up in Directory.
! Value can be {uid | cn | gid | res | mailto | cap}
calstore.unqualifiedattendee.fmt1.type = "uid"
! For attendee calendar lookup, when encountering string that looks like ([email protected]) (has @ sign), treat string as a mailto address when looking-up in Directory
! Value can be {uid | cn | gid | res | mailto | cap}
calstore.unqualifiedattendee.fmt2.type = "mailto"
! For attendee calendar lookup, when encountering string that looks like (John Doe) (has space), treat string as a common name (cn) when looking-up in Directory
! Value can be {uid | cn | gid | res | cap}
calstore.unqualifiedattendee.fmt3.type = "cn"
! Maximum number of results returned from LDAP lookup from user search. Value of 0 means no limit.
calstore.userlookup.maxsize = "200"
! Is Server in Virtual Domain mode or not (this affects 5.0p2 only)
calstore.virtualdomain.mode = "n"
! Enable (y) or disable (n) Access Control plugin.
csapi.plugin.accesscontrol = "n"
! Load only the plugin specified in csapi.plugin.authentication.name? (y/n)
csapi.plugin.authentication = "n"
! Enable (y) or disable (n) Calendar Lookup Database plugins.
csapi.plugin.calendarlookup = "n"
! Specifies the name of a specific Calendar Lookup Database plugin to load. If "*", load the plugins.
csapi.plugin.calendarlookup.name = "*"
! Load only the plugin specified in csapi.plugin.database.name or if not specified, load all database plugins in alphabetical order.
csapi.plugin.database = "y"
! Only load this specific plugin if csapi.plugin.loadall is no and csapi.plugin.database is yes.
csapi.plugin.database.name = "cs_caldb_berkeley10"
! Load only the plugin specified in csapi.plugin.datatranslator.name? (y/n)
csapi.plugin.datatranslator = "y"
! Only load this specific plugin if csapi.plugin.loadall is no and csapi.plugin.data translator is yes.
csapi.plugin.datatranslator.name = "cs_datatranslatorcsv10"
! Enable (y) or disable (n) database-to-output format plugins.
csapi.plugin.dbtranslator = "y"
! If "*", then load all the database-to-output format plugins. If a library name, only load that plugin. csapi.plugin.dbtranslator must be set to "yes" to load plugin
csapi.plugin.dbtranslator.name = "*"
! Load all plugins found in the plugins directory? (y/n)
csapi.plugin.loadall = "n"
! Load only the plugin specified in csapi.plugin.userprefs.name? (y/n)
csapi.plugin.userprefs = "n"
! Load only this plugin if csapi.plugin.loadall is no and csapi.plugin.userprefs is yes.
!!csapi.plugin.userprefs.name = "plugin_name"
! Enable the RSA Cypher Encryption Family Services for SSL
!!encryption.rsa.nssslactivation = "on"
! Define the Certificate name for the RSA Cypher Encryption Family
!!encryption.rsa.nssslpersonalityssl = "SampleSSLServerCert"
! Define the location of the RSA Cypher Encryption Family token
!!encryption.rsa.nsssltoken = "internal"
! Specifies if the auto refresh feature is enabled or disbaled. (yes/no)
gse.autorefreshreplystatus = "yes"
! Specifies (in seconds) how long to wait before the server scans the schedule queue for incoming jobs.
gse.belowthresholdtimeout = "3"
! Maximum number of concurrent threads the server uses to process the schedule queue.
gse.maxthreads = "10"
! Maximum length of time the server will retry to complete a group scheduling job.
gse.retryexpiredinterval = "86400"
! Specifies (in seconds) how often the server will retry a previous failing job.
gse.retryinterval = "300"
! Maximum stack size (in bytes) of a group scheduling thread
gse.stacksize = "65535"
! global flags to control notification for invitation and cancellation.
! Enable (yes) Disable (no), default is enabled. Notification will be sent.
ine.cancellation.enable = "yes"
ine.invitation.enable = "yes"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.basedir.path = "/opt/sun"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.betamajorversion = "0"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.betaminorversion = "0"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.caldbtype = "local"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csinstalldir.path = "/opt/sun"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csprodbasedir.path = "/opt/sun/calendar"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csprodclassesdir.path = "/opt/sun/calendar/classes"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csproddir.path = "/opt/sun"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csprodjavadir.path = "???"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csprodlibdir.path = "/opt/sun/calendar/lib"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csprodtoolsdir.path = "/opt/sun/calendar/tools"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.csproduicustdir.path = "/opt/sun/calendar/uicust"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.fullversion = "6.0"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.majorversion = "6"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.minorversion = "0"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.osarch = "i386"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.osname = "linux"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.ostype = "unix"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.osversion = "2.6.9-22.el"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.patchversion = "0"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.serveruidpassword = "icsuser"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.startupafterinstall = "no"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.startupatboot = "no"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.userauthtype = "ldap"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.userprefstype = "ldap"
! WARNING: DO NOT CHANGE OR DELETE THE FOLLOWING CONFIGURATION FILE ENTRY.
! THIS ENTRY WAS AUTOMATICALLY GENERATED BY THE INSTALLATION PROGRAM.
! IT IS USED ONLY BY THE INSTALLATION AND UNINSTALLATION PROGRAMS.
! THIS ENTRY IS COMPLETELY IGNORED BY ALL OF THE INSTALLED PRODUCTS.
! IF YOU CHANGE OR DELETE THIS ENTRY, THE INSTALLATION AND UNINSTALLATION
! PROGRAMS COULD FAIL THE NEXT TIME THEY ARE RUN.
install.version = "6.0"
! Base DN for LDAP authentication. If not specified, use local.ugldapbasedn.
local.authldapbasedn = "o=bg2iop.com, dc=bg2iop,dc=com"
! Bind credentials (password) for user specified in local.authldapbinddn.
local.authldapbindcred = "admin123"
! DN used to bind to LDAP authentication host to search for user's dn.
local.authldapbinddn = "cn=Directory Manager"

Hi Venigalla,
You can implement a federated portal network (FPN) using the SAP NetWeaver platform to share content between portals.
A federated portal network allows organizations with distributed portal installations, both SAP and non-SAP, to provide a single portal access point per user to portal information, services and applications distributed on portals in the network.
WSRP-based application sharing (FPN Mode used for for integrating content between SAP and Non SAP portals) :-
--> Content administrators on a SAP NetWeaver consumer portal can integrate WSRP portlets (i.e. iViews) from remote non-SAP portals into SAP NetWeaver Portal.
--> SAP NetWeaver developers can create WSRP compliant iViews that can be consumed in non-SAP consumer portals.
You may kindly go through the below link, should be helpful:
http://help.sap.com/saphelp_nw70/helpdata/EN/43/23fb36cad10d23e10000000a1553f7/frameset.htm
Regards,
Anagha

Enabling SSL on Messaging server

Similar Messages

Maybe you are looking for