Category Archives for ssl

FREE Webinar : Saturday 9th Jan : SSL in WebLogic / SOA / WebLogic & OHS

 

   SSL stands for Secure Socket Layer and TLS is for Transport Layer Security where SSL 3.0 is predecessor of TLS 1.0. TLS V1.0 was always considered to be little more secure than its predecessor SSL 3.0 however with POODLE vulnerability SSL v3.0 is now completely insecure (Are you still using SSL 3.0 in your […]

This entry is part 1 of 7 in the series Oracle Fusion Middleware Training
Read More

Security:090294 could not get connection javax. net. ssl. SSLKeyException FATAL Alert BAD_CERTIFICATE – A corrupt or unuseable certificate was received

In today’s post I am going to discuss issue while integrating WebLogic Server with LDAP Server (OID/OVD) listening on SSL. To know more about adding OID as authentication provider in WebLogic click here If OID/OVD is configured to listen on SSL (for steps on how to configure OID/OVD in SSL click here and here ) then you select […]

Read More

How to view SSL certificate (PEM file) using openssl ?

I discussed about certificates in 10g WebGate expiry after 365 days and fix is to re-configure WebGate that will generate new certificate for one year (To change duration of certificate update default_days in $WEBGATE_HOME/oblix/tools/openssl/ openssl.cnf ) Certificates for WebGates are stored in file with PEM extension. You can open PEM file to view validity of certificate using opensssl as shown below openssl […]

Read More

SSL / Wallets in OID/OHS : How to manage certificates in Wallet using command line ?? ORAPKI

I discussed about  SSL basics in WebLogic like Certifying Authority and Certificate , configuring SSL for OID and SSL for OVD  using Graphical User Interface (GUI) using Fusion Middleware Control (EM). What if EM doesn’t work or you did not select Enterprise Manager during WebLogic Domain Creation? or You are not allowed to use GUI like EM to configure/manage […]

Read More

SSL in WebLogic Server – Part II : Create KeyStore, generate CSR, Import CERT and configure KeyStore with WebLogic

This is part II of SSL in WebLogic Server that covers creating KeyStore, generating Certificate Signing Request (CSR), importing Certificate in KeyStore, and finally using this keyStore with WebLogic Server. I strongly recommend to go through Part I “SSL in WebLogic KeyStore, Identity & Trust Store, Root and Intermediate CA“   High Level Steps to […]

Read More

SSL in WebLogic (CA, KeyStore, Identity & Trust Store) : Things you must know – Part I

This post covers basics of SSL in WebLogic Server and how to configure SSL with Custom Certificates and Certifying Authority. For SSL in Oracle E-Business Suite click here, SSL in Oracle Internet Directory (OID) click here , SSL in Oracle Virtual Directory (OVD) click here , and for SSL in Oracle Access Manager (OAM) click here Secure Socket Layer […]

Read More

SSL configuration in OVD – Oracle Virtual Directory

This post covers key points and documentation to configure SSL in Oracle Virtual Directory (OVD) 11g. For SSL configuration in OID 11g click here 1. SSL Authentication Mode – OVD and any other SSL listener can be configured in one of three Authentication Mode a. SSL No-Auth Mode : Neither client nor server are required […]

Read More

Configure SSL for Oracle Internet Directory (OID)

Oracle Internet Directory (OID) by default listens on two ports LDAP (non secure) and LDAPS (secure LDAP), In this post I am going to cover in detail how to configure SSL in OID 11g and key points related to SSL in OID. 1. OID listens on two ports (LDAP and LDAPS) and list of port […]

Read More

How to configure SSL for OAM protected application

In this post I would like to talk about a requirement to access OAM 11g protected application in SSL mode. In my case the protected application is deployed in Tomcat Server front ending Apache Server. The application is protected using OAM 11g Apache WebGate 10g and it works pretty fine. Now the goal is make […]

Read More

Implement SSL In Weblogic

SSL– Secure Socket Layer Protocol which employs a third party, a certificate authority to identify secure transactions of data at both ends. In layman’s terms, this means that all data transmitted between the client & web-server is encrypted & hence is secured. Basic terms to understand- 1) Private Key/Public Key :- You generate a key […]

Read More