Steps to create a self-signed certificate and configure Custom-made Identity and Custom-built Trust with Weblogic Server using Keytool, Oracle Fusion Middleware Blog

Below are the steps to create a self signed certificate :

keytool -genkey -alias mykey -keyalg RSA -keysize 1024 -validity 365 -keypass privatepassword -keystore identity.jks -storepass password

List of keytool directives which are switched te java 1.6 :

-export, renamed to -exportcert

-genkey, renamed to -genkeypair

-import, renamed to -importcert

All previous directions are still supported ter this release ( keytool te java 1.6 ) and will proceed to be supported ter future releases.

To create a 2048 bit SHA2/SHA256 certificate use the following directive :

keytool -genkey -alias mykey -keyalg RSA -keysize 2048 -sigalg SHA256withRSA -validity 365 -keypass privatepassword -keystore identity.jks -storepass password

keytool -export -alias mykey -file root.cer -keystore identity.jks -storepass password

keytool -import -alias mykey -file root.cer -keystore trust.jks -storepass password

To see the contents of the keystore use the following instruction :

keytool -list -v -keystore identity.jks -storepass password

To see the contents of an individual certificate ( like root.cer ter our case ).

keytool -printcert -file root.cer

Copy the keystore files te the domain_home location :

Below are the steps to configure Custom-built Identity and Custom-made Trust with Weblogic Server :

Login to Weblogic Admin console –>, Environment –>, Servers –>, <, server_name_where_ssl_has_to_be_configured >, –>, Configuration ->, General –>, SSL Listen Port Enabled ( Check )

Note : The default SSL Listen Port would be 7002, switch it if required.

Click on Keystores tabulator under ", Configuration ", tabulator :

Click on the druppel down spijskaart next to Keystores and sleect ", Custom-built Identity and Custom-built Trust ",

Now pack te the following information :

Custom-made Identity Keystore : <, location_of_identity_keystore_that_you_have_created>,

NOTE : By default WLS will look for this keystore verkeersopstopping ter domain_home location.

Custom-made Identity Keystore Type : jks

Custom-built Identity Keystore Passphrase: <, This_would_be_your_storepass >,

Custom-made Trust Keystore : <, location_of_trust_keystore_that_you_have_created>,

NOTE : By default WLS will look for this keystore verkeersopstopping ter domain_home location.

Custom-built Trust Keystore Type : jks

Custom-built Trust Keystore Passphrase: <, This_would_be_your_storepass >,

Now save the switches and click on ", SSL ", tabulator :

Private Key Zogenoemde: <, This_would_be_your_certificate_alias >,

Private Key Passphrase: <, This_would_be_your_keypass >,

Save the switches and click on the ", >,Advanced ", field under the ", SSL ", tabulator :

Set the ", Hostname Verification: ", to None ( from the druppel down menukaart ).

Note : Wij need to select the hostname verification spil none if the CN of the certificate is not the same spil the hostname of the machine where WLS is installed.

Now access your Weblogic Admin console overheen https URL :

Related movie: How Basketball Got Embarked The History Of Basketball


Leave a Reply

Your email address will not be published. Required fields are marked *