• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

SSL Problem in Weblogic 6.1 sp3

 
Greenhorn
Posts: 8
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
We are facing problems in enabling SSL on BEA weblogic6.1 with sp3. We used RSA Keon CA to request the server certificates. The parameter values that were used for enabling SSL are specifed as below:

<SSL Enabled="true" ListenPort="7002" Name="myserver"
ServerCertificateChainFileName="config/mydomain/rsa_ca.pem"
ServerCertificateFileName="config/mydomain/rsa_cert.pem"
ServerKeyFileName="config/mydomain/rsa_net_key.der"
TrustedCAFileName="/config/mydomain/root.pem"/>
When the application was deployed using this setup, and was accesed using https, there were no errors that are reported.
But when the same setup is being used with a client side authentication we are getting errors as " Client Certificate Chain Invalid" in the WebAgents log file. We are using a RSA agent to protect the WebLogic.
The client side certificate is being asked by this agent but not from the weblogic. i.e the parameter "Client Certificate Enforced" is not set.
So if any of you could help out with the problem it would be of great help.
 
Rancher
Posts: 13459
Android Eclipse IDE Ubuntu
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Is there a typo in the TrustedCAFileName?
It has "/config/", but all ther rest are "config/"
Dave
 
Subendu Dasgupta
Greenhorn
Posts: 8
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
No, it was my typing mistake. It should have been "/config" everywhere.
 
Don't get me started about those stupid light bulbs.
reply
    Bookmark Topic Watch Topic
  • New Topic