Weblogic SAML Attribute Mapper Example

  It is useful to send custom attributes or tokens in the attribute having identity information of the authenticated user.This identity information can be further used by the detination site to access services on behalf of the user. To implement a SAML Attribute Mapper on Weblogic Server, you need to

Continue reading »

How to check for SSL POODLE / SSLv3 bug on WebLogic? How to fix

Details of the SSL POODLE bug can be found here We can address it in the following way. 1) Disable SSL 3.0 support in the client. 2) Disable SSL 3.0 support in the server. We can start WebLogic server with the following JVM option -Dweblogic.security.SSL.protocolVersion=TLS1 Ref :- Use specific SSL

Continue reading »

Two way SSL Webservice on Weblogic Server

This article provides sample Webservice and Webservice Client for two way SSL. It also demonstrates the use of WLSSSLAdapter class to send certificates to the server. 1. Create a JWS with the following policy  : Wssp1.2-2007-Https-ClientCertReq.xml   package examples.webservices.security_jws; import weblogic.jws.WLHttpTransport; import weblogic.jws.Policies; import weblogic.jws.Policy; import javax.jws.WebService; import javax.jws.WebMethod; import javax.jws.soap.SOAPBinding; @WebService(name="SecureHelloWorldPortType",

Continue reading »

High CPU Usage of WebLogic Server on Linux

If you observe CPU being hogged by the Weblogic Server process on a linux machine, you need to find out the Weblogic Server process id using ps -ef | grep java After you’ve found out the process id, find the thread id’s ( light weight process id’s) and their CPU

Continue reading »

Database authentication on JBoss EAP 5.0

Step 1 Create tables in the database and insert user, group and role information   CREATE TABLE USERS ( U_NAME VARCHAR(200) NOT NULL, U_PASSWORD VARCHAR(50) NOT NULL, U_DESCRIPTION VARCHAR(1000)) ; CREATE TABLE GROUPS ( G_NAME VARCHAR(200) NOT NULL, G_DESCRIPTION VARCHAR(1000) NULL) ; CREATE TABLE ROLES ( U_NAME VARCHAR(200) NOT NULL,

Continue reading »

Configure Apache Webserver to authenticate from LDAP Server

1. Connect to the LDAP Server from an LDAP Browser 2. Uncomment these two modules in httpd.conf LoadModule ldap_module modules/mod_ldap.so LoadModule authnz_ldap_module modules/mod_authnz_ldap.so 3. Add the following Location directive <Location /> AuthType Basic Require valid-user AuthName   “Enter Your ldap Username/Password” AuthBasicProvider   ldap AuthzLDAPAuthoritative   off AuthLDAPURL    ldap://localhost:444

Continue reading »

Simple Sample Custom Database Authenticator for Oracle Weblogic Server 11g

To create a custom database authenticator for oracle weblogic server, you will have to implement the AuthenticationProviderV2, create an MBean definition file and create a class that implements LoginModule. I am providing the sample code below and also the steps to create and install it on your server. DBAuthenticationProviderImpl  

Continue reading »

Simple Sample Custom Identity Asserter for Weblogic Server 12c

To implement a custom identity asserter for Weblogic Server we need to write a provide that implements AuthenticationProviderV2 and IdentityAsserterV2. We need to write and Mbean definition file and a callback handler. SimpleSampleIdentityAsserterProviderImpl   package examples.security.providers.identityassertion.simple; import javax.security.auth.callback.CallbackHandler; import javax.security.auth.login.AppConfigurationEntry; import weblogic.management.security.ProviderMBean; import weblogic.security.service.ContextHandler; import weblogic.security.spi.AuthenticationProviderV2; import weblogic.security.spi.IdentityAsserterV2; import weblogic.security.spi.IdentityAssertionException;

Continue reading »

Issues while starting Managed Server as a Window’s Service

[E] [ServiceStart] Error in JVM. Cause=Unable to find a JVM! If we look at the complete log file we will observe the following lpszCmdLine = -client -Xms32m -Xmx200m -XX:MaxPermSize=128m -XX:+UseSpinning -Dweblogic.Stdout=C:\Oracle\Middleware\user_projects\domains\ClassicDomain\stdout.txt – The service is starting Weblogic Server with -client option. -server option should be used on a Windows 64

Continue reading »

Weblogic Server Administration for Beginners.

This article is for System Admins who are new to Weblogic Administration. The following are the day to day task of a Weblogic Server Administrators. 1. Setting up infrastructure ( Managed Servers, Cluster, Nodemanager) 2. Deploying Applications 3. Creating resources( JMS, JDBC, Security) 4. Monitoring 5. Performance Tuning 6. Troubleshooting

Continue reading »