Weblogic Server SSL Configuration
Note : - it's a third party SSL certificate configuration NOT self signed, For self sign certificate configuration see my this post -
Know about SSL, Identity & Trust
Self Signed Certificate Configuration
High Level Steps
1. Generate public & private key OR you can say generate a Keystore
2. Create CSR ( Certificate Service Request ) & send to certificate authority
3. Authority will send you ssl certificate, root certificate & intermediate certificate
4. Import all certificates to your keystore
5. Create/import trust using root certificate
6. Configure Weblogic for SSL which includes
i) Keystore tab configuration
ii) SSL tab configuration
iii) Enable SSL option with SSL port
In Detailed
Make sure you have java bin path properly set or run below commands directly from inside
java bin folder where you have keytool.exe/sh file
( In my case it's C:\Oracle\Middleware2\jrockit_160_24_D1.1.2-4\bin and I ran commands
from this directly only )
Generate Keystore - Public & Private Key
keytool -genkey -alias alias123 -keyalg RSA -keysize 2048 -keystore identity.jks -storepass storepass123 -keypass keypass123
Here you will get Identity file identity.jks
Note : Here instead of your first and last name you can give your domain name for which you are going to take certificate
Generate CSR
keytool -certreq -keyalg RSA -keysize 2048 -alias alias123 -file certreq.csr -keystore identity.jks -storepass storepass123 -keypass keypass123
Note : - it's a third party SSL certificate configuration NOT self signed, For self sign certificate configuration see my this post -
Know about SSL, Identity & Trust
Self Signed Certificate Configuration
High Level Steps
1. Generate public & private key OR you can say generate a Keystore
2. Create CSR ( Certificate Service Request ) & send to certificate authority
3. Authority will send you ssl certificate, root certificate & intermediate certificate
4. Import all certificates to your keystore
5. Create/import trust using root certificate
6. Configure Weblogic for SSL which includes
i) Keystore tab configuration
ii) SSL tab configuration
iii) Enable SSL option with SSL port
In Detailed
Make sure you have java bin path properly set or run below commands directly from inside
java bin folder where you have keytool.exe/sh file
( In my case it's C:\Oracle\Middleware2\jrockit_160_24_D1.1.2-4\bin and I ran commands
from this directly only )
Generate Keystore - Public & Private Key
keytool -genkey -alias alias123 -keyalg RSA -keysize 2048 -keystore identity.jks -storepass storepass123 -keypass keypass123
Here you will get Identity file identity.jks
Note : Here instead of your first and last name you can give your domain name for which you are going to take certificate
Generate CSR
keytool -certreq -keyalg RSA -keysize 2048 -alias alias123 -file certreq.csr -keystore identity.jks -storepass storepass123 -keypass keypass123
No comments:
Post a Comment