How to configure SSL certificate on WebLogic server

Home/WebLogic/How to configure SSL certificate on WebLogic server

How to configure SSL certificate on WebLogic server

In this section, we walk through how to configure SSL certificate on WebLogic servers. 

Pre-requisite:

  • Identity and Trust Keystore Certificates
  • Passphrase of Identity and Trust Keystore

 

Note: A root certificate is required for a production installation. For this demo configuration, I have used self-signed certificates as shown below. Click on Create self-signed SSL certificate to create your certificates.

 

030317_0342_1 How to configure SSL certificate on WebLogic server

 

Configure SSL certificate on WebLogic Server

 

1. Open the setDomain.sh file in MW_HOME\user_projects\domains\<DOMAIN_HOME>\bin and search for the following text -Djavax.net.ssl.trustStore. Replace the value with your TrustKeystore certificate like below

 

030317_0342_2 How to configure SSL certificate on WebLogic server

 

2. Login into WebLogic console, click on the server where you deployed your application.

 

030317_0342_3 How to configure SSL certificate on WebLogic server

 

3. Click on the General tab and enable the SSL Listen Port Enabled. Enter an SSL Listen Port

 

030317_0342_4 How to configure SSL certificate on WebLogic server

 

4. Click on HTTP under PROTOCOLS tab. Enter the frontend HOST, Frontend HTTP Port and Frontend HTTPS Port of the server you selected

 

  • Enter the fully qualified domain name on all the host parameters

 

030317_0342_5 How to configure SSL certificate on WebLogic server

 

5. Click on the KeyStores tab. Enter the Identity store and Trust Store information.

  • My Identity Store location: <DOMAN_HOME>\certificates\keystore.jks
  • My Trust Store location: <DOMAN_HOME>\certificates\truststore.jks
  • This Identity Keystore Passphrase and Trust Keystore certificates are getting from the person who created the SSL certificates

 

030317_0342_6 How to configure SSL certificate on WebLogic server

 

6. Select the SSL tab and Input Private Key Alias, Private Key Passphrase and Confirm Private Key Passphrase

 

  • This information you get it from the person who created the SSL certificates

030317_0342_7 How to configure SSL certificate on WebLogic server

 

7. Repeat the step 1 to 6 to all other servers in your domain.

8. Restart the Admin and Managed servers. We are done with configuring SSL certificate on WebLogic

 

Test the SSL

I deployed a sample application on the managed server. /p6 is the context path of the application. Let’s invoke the p6 over SSL port number. The SSL port number is mentioned in STEP-3.

 

Because we used Self Signed certificate the page look like below. Expand the Advanced and click proceed to localhost

 

030317_0342_8 How to configure SSL certificate on WebLogic server

 

The page redirect to the below

 

030317_0342_9 How to configure SSL certificate on WebLogic server

govindan How to configure SSL certificate on WebLogic server
Connect me

Govind

Thank you for visiting my personal blog. Myself Govindan, Software Developer by profession since 2006 and hence I started this blog early in 2016 and ever since I've been writing about technologies experienced and learnings of everyday life.

The views expressed on this blog are my personal views and do not necessarily reflect the views of my employer.

Please feeling free to reach me on any comments and feedbacks you have. Would be more than glad to listen and reply 🙂
govindan How to configure SSL certificate on WebLogic server
Connect me
By | 2017-03-04T10:12:51+00:00 March 3rd, 2017|Categories: WebLogic|Tags: , , , |8 Comments
  • nilesh megha

    Hi Govind,
    -Djavax.net.ssl.trustStore i am unable to find this text under setDomainenv.cmd file do i have to add as a new text also can you please tell me on FQDN as i m accessing p6 with “‘http://ss-tas-aps-041:7003/p6/action”” then what whoud be replacement of local host, can you please share some more detail

  • nilesh megha

    Hi Govind,
    if i want to implement same step and if i access p6 with other then local hostlike , https://servername:port/p6 then its work?

    • Govindan Padmanaban
      • nilesh megha

        Hi Govind,
        -Djavax.net.ssl.trustStore i am unable to find this text under setDomainenv.cmd file do i have to add as a new text also can you please tell me on FQDN as i m accessing p6 with “‘http://ss-tas-aps-041:7003/p6/action”” then what whoud be replacement of local host

        • Govindan Padmanaban

          You can skip the VM argument unless it’s throw any error in the server log file, for example ‘trust store certificate not found’

          On Step 4, Put your loadbalancer URL if any, otherwise input your FQDN

          On Step 5, Replace localost with your FQDN

          To find your FQDN, open your command prompt and type ‘ping localhost’. it will return your FQDN.

          • nilesh megha

            Hi Govind,
            Thanks for your response, Finally its working for me as well thanks once again for this post, keep positing new thing.
            Regards
            Nilesh

  • Syed

    Hi Govind. All the steps shared by you helped me in installing ssl certificates and I could start Primavera with https. Thank you very much!!!!!

Like us on Facebook.
Connect!