Home Products Partners Support About us Contact

   Home
   Login
   Products
   Partners
   Support
     Browerscompability
     Certificate Replacement
     Certificate Signing Request
     Manuals
       AEP
       Apache
       Apple
       Barracuda
       BEA
         BEA WebLogic
           Version 4.5
           Version 6.0
             Generate CSR
             Install certificate
           Version 8.1
       C2Net
       Cisco
       Citrix
       Cobalt
       Courier
       cPanel
       Cyrus
       DirectAdmin
       DoveCot
       Ensim
       F5
       GlobalScape
       Google
       H-Sphere
       IBM
       Intel
       InterWorx
       Ipswitch
       ISPConfig
       Java
       Kerio
       Lighttpd
       Litespeed
       Lotus
       Mailtraq
       Microsoft
       NETASQ
       Netgear
       Netscreen
       NetWin
       Nortel
       Novell
       Open-Xchange
       OpenSSL
       Parallels
       Plesk
       qmail
       RedHat
       Sendmail
       SonicWall
       Sun
       SUN-Netscape
       Sybase
       Tomcat
       UW-IMAP
       WatchGuard
       WebSite Pro
       WebSTAR
       Zeus
       Zope
     Test your CSR
   About us
   Contact










Search:
  
Dutch French

Installation of a certificate on BEA WebLogic Server

When you receive your certificates by e-mail you need to store them in the "mydomain" directory.

To use a certificate chain, append the additional PEM-encoded digital certificates to the digital certificate that issued for the WebLogic Server (the intermediate CA certificate). The last digital certificate in the file chain will be the Root certificate that is self-signed. (example below:)

-----BEGIN CERTIFICATE-----
Intermediate CA certificate
-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----
Root CA certificate
-----END CERTIFICATE-----

Configure WebLogic Server to use the SSL protocol, you need to enter the following information on the SSL tab in the Server Configuration window:

In the Server Certificate File Name field, enter the full directory location and name of the digital certificate for WebLogic Server.

In the Trusted CA File Name field, enter the full directory location and name of the digital certificate for the GloablSign certificate, who signed the digital certificate of WebLogic Server.

In the Server Key File Name field, enter the full directory location and name of the private key file for WebLogic Server.

Use the following command-line option to start WebLogic Server. -Dweblogic.management.pkpassword=password where password is the password defined when requesting the digital certificate.

Storing Private Keys and Digital Certificates
Once you have a private key and digital certificate, copy the private key file generated by the Certificate Request Generator servlet and the digital certificate you received into the mydomain directory.

Private Key files and digital certificates are generated in either PEM or Definite Encoding Rules (DER) format.

The filename extension identifies the format of the digital certificate file. A PEM (.pem) format private key file begins and ends with the following lines, respectively:

-----BEGIN ENCRYPTED PRIVATE KEY-----
-----END ENCRYPTED PRIVATE KEY-----
A PEM (.pem) format digital certificate begins and ends with the following lines, respectively:
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----

Note: Typically, the digital certificate file for a WebLogic Server is in one file, with either a .pem or .der extension, and the WebLogic Server certificate chain is in another file. Two files are used because different WebLogic Servers may share the same certificate chain.

The first digital certificate in the certificate authority file is the first digital certificate in the WebLogic Server's certificate chain. The next certificates in the file are the next digital certificates in the certificate chain. The last certificate in the file is a self-signed digital certificate that ends the certificate chain. A DER (.der) format file contains binary data. WebLogic Server requires that the file extension match the contents of the certificate file.