Weblogic 6.1 setup for SSL/HTTPS

Hi all,
i have written a programe to send HTTPS requests (using JSSE) to a JSP/Servlet , and my qustion is do i need to change any default settings of Weblogic server SSL properties for this, if so what are the changes i have to make. Then how to create .pem files.
thanks in advance

I think you could directly use the demo license certificate from the Weblogic itself and tried to request from your ssl port (default is https://<your domain name>:7002/<servlet name>.
How to create a .pem file?
Well, you can use the web app in Weblogic named certificate to create certificate request. (http://localhost:7001/certificate)
Then after you generate the certificate request, you have to ask a CA to sign the cert request for you and give you the real certificate.
Then you have to load you cert and the key in the SSL config page (can be configured from your weblogic console) and you are good to go!
Check out openssl.org for more information on creating your own CA and many complex things ...
And good luck ...
Cheers,
Dody

Similar Messages

  • Reverse Proxy setup for Mobility HTTP 80 configuration not working

    http://technet.microsoft.com/en-us/library/hh690011(v=ocs.14).aspx
    I'm trying to use the Port 80 ->8080 setup to avoid putting lyncdiscover.sipdomain.com for every additional sip domain that we want to include.
    I have followed the instructions per the above link, yet when I try to log in with a user with one of those additional SIP's, I cannot log in to a mobile device.
    For example,
    our main sip is "contoso.com", so
    [email protected] can log into her mobile device.
    but user [email protected] cannot log in via mobile device.
    Is there anything else that needs to be done to ensure that
    [email protected] can login via a mobile device?
    Auto login?
    Josh
    Here is the testexchangeconnectivity.com
    When I run the Lync Mobile Test, I get this, almost like the http rule is useless, still requiring the need for the additional lyncdiscover.sipdomain.com .
    [email protected]
    Testing connectivity to the Lync Autodiscover Web Service server for a secure connection on port 443 to obtain the root token.
      Connectivity to the Lync Autodiscover Web Service test failed.
     Test Steps
     Attempting to test Autodiscover Web Service URL https://lyncdiscover.fabrikam.com/Autodiscover/AutodiscoverService.svc/root.
      Autodiscover Web Service URL can't be contacted due to failure of the following tests:
     Test Steps
     Attempting to resolve the host name lyncdiscover.fabrikam.com in DNS.
      The host name resolved successfully.
     Additional Details
     Testing TCP port 443 on host lyncdiscover.fabrikam.com to ensure it's listening and open.
      The port was opened successfully.
     Testing the SSL certificate to make sure it's valid.
      The SSL certificate failed one or more certificate validation checks.
     Test Steps
     ExRCA is attempting to obtain the SSL certificate from remote server lyncdiscover.fabrikam.com on port 443.
      ExRCA successfully obtained the remote SSL certificate.
     Additional Details
     Validating the certificate name.
      Certificate name validation failed.
       Tell me more about this issue and how to resolve it
     Additional Details
      Host name lyncdiscover.fabrikam.com doesn't match any name found on the server certificate CN=lncpool01.contoso.com, OU=Domain Control Validated.

    Hi,
    Please verify DNS record for Lyncdiscover.fabrikam.com can be resolved.
    Please make sure the web publishing rule for port 80 has been configured correcltly. The lyncdiscover.<sipdomain> entry must to be included in rule. Verify that port 8080 was typed in "Redirect requests to HTTP port" and Redirect
    requests to SSL port is not selected.
    Kent Huang
    TechNet Community Support

  • Oracle companion cd setup for win 64 bit server 2008

    hi everyone,
    i have downloaded setup from http://download-llnw.oracle.com/otn/nt/oracle10g/xe/10201/OracleXEUniv.exe
    I have installed Oracle XE on a 64-bit Microsoft Windows Server 2008 successfully.
    Now i need to install Oracle Database 10g Companion CD setup for oracle http apache and oracle apex 3.1.
    i have apex setup and setup link http://www.oracle.com/technology/software/products/database/oracle10g/htdocs/10201winsoft.html => 10201_companion_win32.zip
    this is for 32 bit os. but i need for 64-bit OS win server 2008.
    please anyone help me where to download the setup Oracle Database 10g Companion CD setup for 64-bit Microsoft Windows Server 2008 to install oracle http server.
    many thanks.
    Loga
    Edited by: Logaa on Aug 24, 2009 3:14 AM
    Edited by: Logaa on Aug 24, 2009 10:04 PM

    hi all
    i have right clicked the setup exe and set version compatability win server 2003 . now the installation success.
    thanks for the forum friends who have spent time to check this question.
    i am closing this question.
    thanks
    Logaa

  • Install SSL certificate for Oracle HTTP server

    I received a PFX file that contains an SSL wildcard certificate for our company *.xyz.com.
    I used this tool "xca" to extract two files: "server.crt" and "serverkey.pem".
    I want to install this on the oracle 11g HTTP server (OHS) installed as standalone based on apache 2.2
    With oracle, i have to create a wallet and point the SSL.CONF wallet directive to use that wallet.
    I used Oracle Wallet Manager to create it and import the certificate but this is where i am having a problems.
    First I could not restart the web server but the it worked but I got SSL handshake errors (Shown below).
    According to oracle steps, I have to create a CSR and then import the certificate into the wallet
    http://www.apache.com/resources/how-to-setup-an-ssl-certificate-on-apache/
    However, when I tried to use Oracle Wallet Manager, there were two options: import server certificate and trusted certificate.
    The import server certificate was greyed out. I had to create a CSR just to get it enabled but I did not use the CSR, i just imported the "server.crt" file.
    I also tried to import the "serverkey.pem" into the trused certificate option but was rejected (invalid certificate).
    Do you know how to create a successful wallet based on the files i have and not creating a CSR since i already have a certificate file?
    2013-05-04T20:11:40.2718-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1253263680] [user: root] [VirtualHost: ptp.xyz.xom:443] nzos handshake error, nzos_Handshake returned 29040(server ptp.xyz.xom:443, client 10.60.117.121)
    [2013-05-04T20:11:40.2719-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1253263680] [user: root] [VirtualHost: ptp.xyz.xom:443] NZ Library Error: Unknown error
    [2013-05-04T20:11:40.4774-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1263753536] [user: root] [VirtualHost: ptp.xyz.xom:443] unusably short session_id provided (0 bytes)
    [2013-05-04T20:11:40.4776-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1263753536] [user: root] [VirtualHost: ptp.xyz.xom:443] nzos handshake error, nzos_Handshake returned 29040(server ptp.xyz.xom:443, client 10.60.117.121)
    [2013-05-04T20:11:40.4776-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1263753536] [user: root] [VirtualHost: ptp.xyz.xom:443] NZ Library Error: Unknown error
    [2013-05-04T20:11:40.6814-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1274243392] [user: root] [VirtualHost: ptp.xyz.xom:443] unusably short session_id provided (0 bytes)
    [2013-05-04T20:11:40.6816-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1274243392] [user: root] [VirtualHost: ptp.xyz.xom:443] nzos handshake error, nzos_Handshake returned 29040(server ptp.xyz.xom:443, client 10.60.117.121)
    [2013-05-04T20:11:40.6816-04:00] [OHS] [ERROR:32] [] [core.c] [host_id: ptp.xyz.xom] [host_addr: 10.72.11.211] [pid: 11339] [tid: 1274243392] [user: root] [VirtualHost: ptp.xyz.xom:443] NZ Library Error: Unknown error

    I do not have weblogic installed. I only have standalone 11g HTTP server with mod_plsql.
    If i can get OWM working to create a successful certificate them the problem would be resolved.
    I am just not sure what is Root Certificate and Trustworthy Certificate and how to get that from the files i have.

  • MapViewer.getGeneratedImaegURL() does not return https for SSL mapviewers

    We've setup a SSL mapviewer with an https:// URI but MapViewer.getGeneratedMapImageURL returns http://uri:7002 instead of https://uri:7002
    This is easy enough to fix by testing if the getServiceURL starts with "https" and testing the start of getGeneratedMapURL and then replacing the "http:" with "https:" but it's a bug so we're reporting it here.
    Thanks, Mark

    Hi Mark,
    thanks for your note. We will look it.
    Joao

  • Unable o Find Oracle Weblogic Server setup for Win 2008 Server 64-Bit

    Hi
    Unable o Find Oracle Weblogic Server setup for Win 2008 Server 64-Bit machine.
    Please provide the dowload links.
    Thanks

    Please follow this link for download and set requirements for installation of WebLogic 10.3 for Win 2008 Server 64bits:
    http://download.oracle.com/docs/cd/E13196_01/platform/suppconfigs/configs/windows2008/win2008_103.html
    best regards,
    Thiago LeƓncio

  • How to setup a Proxy Server for SSL

    Hello,
    We have a proxy server that uses the same port for http and https. How can I setup a proxy server in OSB (10gR3) for my business services to use with same port for both http and https?
    Thanks,
    Mike.

    Hi Mike,
    The problem is OSB doesn't seem to let me set the same port for both http and https on a proxy.Can you please let us know the exact problem you are facing? I hope you would have referred below links as well -
    http://download.oracle.com/docs/cd/E13159_01/osb/docs10gr3/eclipsehelp/ui_ref.html#wp1347580
    http://download.oracle.com/docs/cd/E13159_01/osb/docs10gr3/consolehelp/global_resources.html#systemadminProxyAdding
    You may set the proxy server at JVM level as well (workaround).
    Regards,
    Anuj

  • Weblogic server 9.2 and SSL server certificate for the wrong site

    I turned on SSL service for a weblogic 9.2 server and later on changed the hostname of the machine that weblogic was running on. So the hostname that my SSL server certificate was issued to has now became an invalid hostname. But my weblogic server continues to run SSL service without any exception. I can still access my web applications thru the SSL port (except of course I get a warning for the server certificate every time that it is for the "wrong site"). My question is this: should weblogic 9.2 verify the hostname in the server certificate and stop SSL service if the certificate is for the wrong site? Or is verifying the certificate strictly the job of the browser? Just want to make sure there is nothing wrong with my SSL configuration. Thanks.

    So you are saying that something is wrong with my weblogic 9.2 ssl configuration? And that given a server certificate issued to a different hostname, my weblogic server should NOT be servicing ssl request and/or it should throw some sort of exception during startup? Thanks for clarifying.

  • Netscape cert type does not permit use for SSL server on Weblogic

    We have WLS 11g (11.1.1.5 SOA) on UNIX and we are trying to connect secured service (Using client certificate along with UserName and Password for Authentication ). I was able to test it using SOAP UI.
    But when I am testing the webservice I am facing listed error
    java.lang.Exception: oracle.sysman.emSDK.webservices.wsdlapi.SoapTestException: oracle.fabric.common.FabricInvocationException: Unable to access the following endpoint(s): https://abcd:1111/JWSs/V1/TermsWS at oracle.sysman.emas.model.wsmgt.WSTestModel.invokeOperation(WSTestModel.java:575) at oracle.sysman.emas.view.wsmgt.WSView.invokeOperation(WSView.java:381) at
    and domain log shows that
    Caused By: javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: sun.security.validator.ValidatorException: Netscape cert type does not permit use for SSL server
    Please help me to resolve listed issue.
    Can I use Netscape client certificate on WLS?
    Do I need to take any extra care while working with client cert?
    I appreciate your help.

    Netscape cert type does not permit use for SSL clientTry using another certificate. Your certificate can't be used as a web browser client certificate.

  • Download Link for Oracle WebLogic Server setup for 64Bit 2008R2 Server

    I need One Information. Can we get Oracle WebLogic Server setup for 64Bit 2008R2 Server. If Yes Please provide me the Dowload Link.
    Thanks
    Vishwa

    Got link ... downloading Setup .. trying for my Luck

  • SSL Certificate setup for Web/Address Book/iCal in 10.7 Lion?

    I know nothing about certificates. I plan to use my Mini server to help manage my family's computers which are pretty spread out across the U.S. My plan is to use profile manager for device management, host a couple websites (one secure for home security cams) and share address books and calendars. This is as much a geek gadget project as it is "useful" so I understand I may be creating some work for myself
    Anyway, can someone walk me through the correct setup for certificates? My research is showing me a LOT of options/parameters. Due to the expense, i don't want to create one just to find it won't serve my purposes.
    Also, I think i'm going with RapidSSL...$50 is the cheapest I've come across...hopefully the offer what I need?

    I have just spent 30 minutes on the phone to a pleseant chap in Athens, and now have a solution.
    We tried several options and the final one worked - so simple.
    Click on the apple symbol > system preferences > iCloud > disable contact sync > keep contacts
    Check search, in my case it worked for the first time in several weeks :-)
    then re-enable contact sync as follows:
    Click on the apple symbol > system preferences > iCloud > re-tick contacts > merge contacts
    Search still works
    Hallelujah!

  • How to set the Certifcate to use for SSL when more than one available?

    I apologise for bad wording of question.
    We have a 11g Directory Server and when we created the directory instance it generated a self-signed certificate. very nice.
    We have recently requested and installed a CA signed certifcate, so we now have TWO certificates in the directory certificate store. Default Certificate and the new Server-Cert (the CA signed one)
    LDAP clients STILL seem to be presented with the self-sgned certificate though.
    Simple question... how do I make my Server-Cert the 'default' certificate presented to LDAP clients ???
    I would rather not delete the self-signed cert if possible.
    I cant find any documented method to achieve this.

    # Listing Certificate
    $ /certutil -L -d <path>/slapd-abc/alias -P slapd-
    # Add Trust by adding CT
    $ certutil -M -n "GeoTrust DV SSL CA" -t CT,, -d <path>/slapd-abc/alias -P slapd-
    # Verify the setup.
    $ certutil -L -d <path>/slapd-abc/alias -P slapd-
    ( You should see the CT beside the relevant cerficate, making it default for SSL communication )
    GeoTrust DV SSL CA CT,,
    Link : http://docs.oracle.com/cd/E19656-01/821-1504/6nmg10b6g/index.html ( Look around for different steps for configuring SSL )
    JPrince

  • How to configure apache for ssl in windows platform

    hi all,
    can anyone help me expalin how to configure apache for ssl in windows platform.

    George,
    I would take the following 'first steps'
    1)Install Apache20 on your Windows machine following the Apache online documentation
    http://httpd.apache.org/docs-2.0/misc/tutorials.html
    2)Make sure you can 'serve up' static HTML content from your Apache Server
    3)Install Weblogic Server per our online documentation
    http://edocs.bea.com/wls/docs61/install/index.html
    4)Also, make sure you can 'serve up' both static and dynamic (e.g., JSP) content
    directly from WLS server
    5)Once you have both of the above 'sanity' checks attempt to configure a simple
    proxy by ppath or mime type via our online documentation
    http://edocs.bea.com/wls/docs61/adminguide/apache.html#103803
    Chuck Nelson
    DRE
    BEA Technical Support

  • POP3 & IMAP Email setup for both Wifi & Cell use separately...

    Hello,
    I was asked to post info about this by an iPhone support rep.
    I initially had lots of trouble setting accounts for use with both my WiFi home and office networks and for use through the ATT cell network.
    If you have a question as to how to setup email for both WiFi and Cell use, answer is you can't configure these manually and you don't want to...the phone does this automatically...and seamlessly. (you will NOT see the change in the advanced settings menu, this occurs internally, the settings appear the same)
    The problem: Accounts changing settings automatically...when manually configuring two separate accounts with the same email address but trying to setup the outgoing settings for different ports...one for WiFi (your broadband server acct / port 587) and one for Cell (cwmx.com / port 25)...THIS WON'T WORK!! My WiFi configured email accounts would automatically switch to Cellular configured email accounts as long as they had the same email address. Even though I gave them different names, the phone looks at the "actual email address" and if they are the same it changes your configuration to match the other account (it does this by matching the account that was either ON or OFF first and as soon as you match the second account to that setting (either ON or OFF) the phone switches the settings to match the first account.
    The Solution: (End of the Story first for those who have or are facing this problem): Be sure to setup the email accounts for use with your WiFi account first (and ONLY), as when you leave the WiFi area or turn off the WiFi setting the email account will automatically reconfigure itself for use with the ATT Cellular network...then the settings will switch back when you re-connect to the WiFi area(s). The settings that you will "SEE" are your setup for WiFi, this will not change even when using the Edge network (at least not what is displayed in the "advanced" menu). You will still see Port 587, even though the phone is changing setups internally and changes back once back on a WiFi network, you just don't see the changes.
    *I hope this helps!*
    (more details below for those who might be interested and _for those who may be trying to setup using COMCAST Broadband_)...
    My issue began because I could not get my Comcast setup to work for outgoing email. So I was advised to setup for the Edge port settings by an iPhone support person from ATT...this was a huge error. Because I attempted to do this it actually kept the phone from smoothly converting settings as needed. I only discovered this after resolving the actual problem with my WiFi (Comcast Broadband settings) issue which was actually the setup that MUST HAVE a user ID and Password, at least when using a Comcast Broadband account. Unlike the rest of my XP and ME computers on my networks which do not require this info, the iPhone DOES.
    Because I could not get outgoing mail to work with my broadband setup I attempted to setup two accounts for each email address...one for Cellular and one for WiFi for when I would figure out my problem...or for just sending email more quickly. This does not work as the conflict causes a nightmare. This is something the iPhone support folks should have explained but failed to do so, perhaps as they didn't know this?
    Bottom line: Let the phone do the choosing...it works great and will avoid YOU wasting TWO DAYS and more than 12 hours on the phone with iPhone Support as I did. I eventually figured the port switching issues and solutions on my own through trial and error and luckily one bright iPhone support person advised me that he knew for sure that when using the iPhone with Comcast you must setup "outgoing settings" using an "ID" and "Password" which I was provided by Comcast in only a few minutes. I don't use their emial account but I setup one just for this purpose. Once done, my email accounts began working normally. Once I resolved the conflict issues listed above the phone now works great both WiFi and Cell.
    -Rich

    fullspool,
    Comcast offers an authenticating SMTP server that should work for you on WiFi and EDGE both.
    The settings are linked in this Apple knowledge base article:
    http://docs.info.apple.com/article.html?artnum=306074
    The Comcast link is:
    http://www.comcast.net/help/faq/index.jsp?faq=Emailtop18913
    From that link the settings are:
    Your email address: [email protected]
    The email server type (POP)
    Incoming mail server: mail.comcast.net
    Outgoing mail server: smtp.comcast.net
    With SSL on for both incoming and outgoing.
    Hope this helps,
    Nathan C.

  • Using HttpSupport library for SSL with User Id/Password

    Does anybody know how to use UDS HttpSupport library for SSL connection which requires user id and password?
    Got no problem so far in getting pages using https and HttpBaseRequest but can't figure out how to setup user id and password for logging in to server. Have tried https://userid:password@server/... but UDS treated password@server as the port!
    Any help is appreciated.

    I assume you mean that you need to provide the password needed for a certificate for SSL authentication.
    For both client and server, these are configuration items.
    If you want to do HTTP authorization, which is not related to SSL, you should use the Authorization and WWW-Authenticate (in a 401 response) to get a user name and password to the server.

Maybe you are looking for