Installation Instructions for BEA WebLogic Server 8.0 - 10.0

Solution ID:    SO16546
Version:    8.0
Published:    07/13/2010
Updated:    02/18/2015

Solution


This document provides instructions for installing SSL Certificates on BEA Weblogic 8.0 -10.0. If you are unable to use these instructions for your server, RapidSSL recommends that you contact Oracle.
 

Step 1. Download RapidSSL CA Certificates:

    1.    Go to RapidSSL Intermediate CA Certificates page.
    2.    Download the Intermediate CA certificate according to your SSL product.
    3.    Copy and paste it to a Notepad.

           Note:  Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE
           and that no white spaces, extra line breaks or additional characters have been inadvertently added.  

    4.    Save the file as Intermediate.txt
 

Step 2. Obtain the RapidSSL SSL Certificate

    1.    The RapidSSL certificate will be sent by email.
    2.    Copy the certificate imbedded in the body of the email and paste it into a text file using Vi or Notepad.

            The text file should look like:

            -----BEGIN CERTIFICATE-----

                     [encoded data]

           -----END CERTIFICATE-----

    3.    Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and
           that no white spaces, extra line breaks or additional characters have been inadvertently added.

           NOTE: The certificate can be also downloaded from the RapidSSL User Portal by 
           following the steps from this link: SO16222
           Please select X.509 as a certificate format and copy only the End Entity Certificate.

    4.    Paste the certificate on a Notepad
    5.    Open the Intermediate.txt file from Step 1, copy the content and paste it right bellow your certificate. 
    6.    The file should look like this when finished:

            -----BEGIN CERTIFICATE-----
                 (Your SSL certificate)
            -----END CERTIFICATE-----
            -----BEGIN CERTIFICATE-----
              (Intermediate certificate)
            -----END CERTIFICATE-----

    7.    Save the file as Mycert.pem

Step 3: Install the SSL Certificate

    1.    Using the java keytool utility, import the pem file you created above using the following command:

           keytool -import -alias tomcat -keystore /path_to_keystore/mykeystore -file Mycert.pem 

          
NOTE: The command should be typed on one line. This command imports the certificate into the
           keystore named mykeystore in the working directory. Your keystore path and name may be different.


Step 4: Configure the Identity and Trust keystores for WebLogic Server

    1.    In the left pane of the Console, expand Environment and select Servers.
    2.    Click the name of the server for which you want to configure the identity and trust keystores.
    3.    Select Configuration > Keystores.
    4.    By default, WebLogic ships with demo certificates for testing purposes.
    5.    Click the 'Change' link in the upper-right portion of the configuration items. 
           This will display the drop-down list of options for configuration. 
    6.    Choose 'Custom Identity and Java Standard Trust' from the list. 
    7.    Specify the identity keystore information:

  • Custom Identity key store file Name: c:\where\my\keystore\is\located\mykeystore.keystore (The fully qualified path to your keystore)
  • Custom Identity key Store Type: jks (Generally, this attribute is jks)
  • Custom Identity key Store Pass Phrase: keystore_password (The password defined when creating the keystore)
  • Confirm Customer Identity key Store Pass Phrase: Keystore_password (The password defined when creating the keystore)
  • Java standard Trust Key Store Pass Phrase: changeit (unless your system admin changed it the password for the cacerts keystore is "changeit"
  • Confirm Java Standard Trust Key Store Pass Phrase: changeit (unless your system admin changed it the password for the cacerts keystore is "changeit")
     

    8.    Click 'continue'

 
[Review SSL Private Key Settings]

  • Private key Alias: keyEntry_friendly_name (the alias is the friendly name for your keyEntry (private key), if you do not remember it please run the following command
    to confirm the alias: keytool -list -keystore [keystore_friendly_name] -v)
  • Passphrase: keyEntry_password (specify the keyEntry (private key) password. The password for the private key may differ from the one for the keystore)
  • Confirm Passphrase: keyEntry_password (specify the keyEntry (private key) password. The password for the private key may differ from the one for the keystore)

 

    9.    Click 'continue' 
  10.    Click Finish
  11.    Reboot WebLogic Server.
  12.    Verify certificate installation using the RapidSSL Installation Checker


Oracle

           For more information, refer to Weblogic documentation
 

Disclaimer:

RapidSSL has made efforts to ensure the accuracy and completeness of the information in this document. However, RapidSSL makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. RapidSSL assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document.  Further, RapidSSL assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. RapidSSL reserves the right to make changes to any information herein without further notice.

Contact Support

US Support:

Order Processing

Technical Support

European Support:

Order Processing

Technical Support

SSL digital certificates sales live chat.

Knowledge Center


Search Tips