Weblogic‎ > ‎

SSL

Weblogic SSL


Custom Trust and Identity KeyStores

All managed servers and the admin console are to be setup with customer identity and trust keystores the QA server's cert, code-qa.compute.info, was signed by compute.info's CA. compute.info's CA was imported into both identity and trust keystores.

Under Keystore Tab:

Identity Keystore: d:\vol_2\apps_qa\certs\code-qa.compute.info.jks
Type: JKS
Password: idenpass
Trust Keystore: D:\vol_2\apps_qa\certs\DemoTrust2.jks
Type: JKS
Password: DemoTrustKeyStorePassPhrase

Under SSL tab (note that private key password is the same as keystore pass):

Alias: myalias
Password: idenpass

Also the nodemanager on both servers are setup with the custome identity and trust keystores.

The following was appended to D:\Oracle\Middleware_1\wlserver_10.3\common\nodemanager\nodemanager.properties
 
KeyStores=CustomIdentityAndCustomTrust
CustomIdentityKeyStoreFileName=D\:\\vol_2\\apps_qa\\certs
code-qa.compute.info.jks
CustomIdentityKeyStorePassPhrase=code-qa
CustomIdentityAlias=code_qa
CustomIdentityPrivateKeyPassPhrase=code-qa
CustomTrustKeyStoreFileName=D\:\\vol_2\\apps_qa\\certs
DemoTrust2.jks
CustomTrustKeyStorePassPhrase=DemoTrustKeyStorePassPhrase
Comments