Skip to main content

How to configure Custom Keystore & SSL in Oracle Weblogic 12c with WLST


In this post, we are going to see how to configure Custom keystore and SSL in Weblogic 12c through WLST.
Before configuring ensure that your Weblogic server is up and running.
Use the below script and run the script through WLST to configure Keystore and SSL
===== SCRIPT STARTS ============
// connect to Weblogic server. alter the ip-address and port as per your server configurations
connect('admin', 'admin@123', t3://ip-address:port)
edit()
startEdit()
// We are going to update the Keystore and SSL in AdminServer. Alter as per your needs
cd('/Servers/' + 'AdminServer')
cmo.setKeyStores('CustomIdentityAndCustomTrust')
cmo.setCustomIdentityKeyStoreFileName('/path/to/keystore/jks/file')
cmo.setCustomIdentityKeyStorePassPhrase('passphrase')
cmo.setCustomIdentityKeyStoreType('JKS')
cmo.setCustomTrustKeyStoreFileName('/path/to/keystore/jks/file')
cmo.setCustomTrustKeyStorePassPhrase('passphrase')
cmo.setCustomTrustKeyStoreType('JKS')
Till now, we have made changes only for the Keystore configuration. Now we are going to make changes for SSL
cd('/Servers/' + 'AdminServer' + '/SSL/' + 'AdminServer')
// update the below parameter
cmo.setServerPrivateKeyAlias('selfsigned')
set('ServerPrivateKeyPassPhrase', 'passphrase')
cmo.setUseServerCerts(true)
cmo.setHostnameVerifier(None)
cmo.setTwoWaySSLEnabled(false)
save()
activate()
disconnect()
exit()
===== SCRIPT ENDS ======
Save the above scripts as python scripts and run the file using the command java weblogic.WLST file_name.py

Popular posts from this blog

How to disable Apache Commons Logging statement in Our Java Application

In recent times, One of the java project applications is started printing apache-commons logs in the application logs. Turns out due to the changes in the migration process. The log4j.xml from the apache-commons is taken into account in the classpath due to that the application logs keep piling up and at some point of time the servers end up with no storage spaces, To disable the Apache commons logs from the Apache commons-logging module. Add the following parameter in the Java args during the server startup. -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.NoOpLog
Read more

Generate htpasswd in Linux / UNIX Using Command Line / Terminal

Generate htpasswd in Linux / UNIX Using Command Line / Terminal  Introduction htpasswd is used to create and update the flat-files used to store usernames and password for basic authentication of HTTP users.  htpasswd encrypts passwords in different methods.It encrypts using either bcrypt, a version of MD5 modified for Apache, SHA1, or the system's crypt() routine. Files managed by htpasswd may contain a mixture of different encoding types of passwords; some user records may have bcrypt or MD5-encrypted passwords while others in the same file may have passwords encrypted with crypt(). Create a new password file Creates a new file and stores a record in it for user naveen. The user is prompted for the password.  sudo htpasswd -c /opt/.htpasswd naveen Change or update password To add or modifies the password for user naveen, enter: sudo htpasswd /opt/.htpasswd-users naveen Adds or modifies the password for user naveen. The user is prompted
Read more