Technical data

14 Managing Security

14-52 Administration Guide

Copy the root certificate of the certificate authority into the \wlserver6.1\config\

directory of your WebLogic Server and set the attributes described in Defining

Attributes for the SSL Protocol.

If you want to use a certificate chain, append the additional PEM-encoded digital

certificates to the digital certificate of the certificate authority that issued the digital

certificate for WebLogic Server. The last digital certificate in the file should be a

digital certificate that is self-signed (that is, the rootCA certificate).

If you want to use mutual authentication, take the root certificates for the certificate

authorities you want to accept and include them to the trusted CA file.

Defining Attributes for the SSL Protocol

The Secure Sockets Layer (SSL) protocol provides secure connections by allowing

two applications connecting over a network connection to authenticate the other’s

identity and by encrypting the data exchanged between the applications. The SSL

protocol provides server authentication and optionally client authentication,

confidentiality, and data integrity.

To define attributes for the SSL protocol, perform the following steps:

1. Open the Administration Console.

2. Open the Server Configuration window.

3. Select the SSL tab. Define the attributes on this tab by entering values and

selecting the required checkboxes. (For details, see the following table.)

4. Click the Apply button to save your changes.

5. Reboot WebLogic Server.

Note: If you are using a PKCS-8 protected private key, you need to specify the

password for the private key on the command line when you start WebLogic

Server.

The following table describes each attribute on the SSL tab of the Server Configuration

window.