Weblogic Certificate Renewal for existing or new certs with commands

Below are commands to renew an existing or create a new certificate request. Weblogic Cert Commands: 1 - List the keys: keytool -list -v -keystore identity.jks -storepass password 2 - Generate a new Key Pair & Java Keystore: keytool -genkey -alias mydomain -keyalg RSA -keystore keystore.jks -keysize 2048 OR 2 - Generate CSR for existing ...

Checking SSL/TLS connectivity via openssl to verify Poodle Fix

You can use below commands to check on which protocols a particular website responds: Recommended practice is to use only TLS1_1 & TLS1_2 as the enabled protocols on your web/app server. As SSL3 & TLS1 are not that secure now due to various uncovered vulnerabilities. openssl s_client -connect : -<ssl3|ssl2|tls1|tls1_1|tls1_2> openssl s_client -connect localhost:8080 -ssl2 ...

Apache installation & integration with Weblogic on Linux

I. Download from : http://httpd.apache.org/download.cgi II. Install the apache web server in Linux: Step 1: first unzip the file on zip file gunzip httpd-2.0.55.gzStep 2: tar file is open. Untar that filetar –xvf httpd-2.o.55.tarThe file will display httpd-2.o.55Step 3: cd httpd-2.0.55./configure —prefix= \home\Apache2.2\Apachemakemake installThe install is completed.III. Check Apache servers running processes:ps -ef | grephttpd ...

Running Middleware apps with non-root user on privileged ports < 1024 on Solaris

In Solaris 9 and above, non root users can open ports < 1024 with the below command: # su – # /usr/sbin/usermod -K defaultpriv=basic,net_privaddr <userId> Also this needs to be run once by root user, after this user will be able to bind to any available port & there will be no restriction

Heartbleed Bug affecting Weblogic websphere apache & other middleware application / web servers ?

So we all are hearing various news about Heartbleed Bug, so let’s see which of our middleware application servers are affected by this: Here is an brief review of the Bug -CVE-2014-0160: “OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the TLS/DTLS heartbeat functionality. An attacker could exploit ...

Weblogic Application Server versions and difference between Weblogic 10g & 11g

Weblogic Application Server Versions:

Patch Installation in Weblogic Server

Steps:

Increase JMS Adapter Connection Pool in Weblogic

Download jms-xa-adp.rar from Unix machine, unrar it then edit the Weblogic-ra.xml and change as follows:

Configure Oracle HTTP Server infront of Oracle WebLogic Server

Steps:

How To Change Type of JDK (Sun / JRockit) for FMW 11g Domain [ID 1058804.1]

OPTION 1: Switch JDK for all the servers in all domains under this Middleware home