How to configure SSL on Nodemanager for 12c

In Weblogic Server 12.1.2, the java version of Node Manager controls all WLS instances belonging to the same domain.This allows the feasibility to have different nodemanager configurations for different domains. You can follow the steps below to use one nodemanager per domain running over SSL ( custom identity & custom

Continue reading »

JBoss EAP Quiz

Continue reading »

How to store http sessions in database for WebLogic Cluster

In this example we are going use Postgres database for session replication. It can be downloaded from here Once installed, you need to execute the following query to create the table to store session   create table wl_servlet_sessions ( wl_id TEXT NOT NULL, wl_context_path TEXT NOT NULL, wl_is_new CHAR(1), wl_create_time

Continue reading »

How to do auto backup of weblogic config.xml

You need to go to the following location Home >your_domain > Configuration > General > click Advanced   The configuration is backed up at the time of server boot.  

Continue reading »

How to configure SSL Between Weblogic and Apache

    1) Set WLS Environment C:\Oracle\Middleware\wlserver_10.3\server\bin>setWLSEnv.cmd 2) Go to the lib directory and covert WLS Root Certificate to .pem format C:\Oracle\Middleware\wlserver_10.3\server\lib>java utils.der2pem CertGenCA.der C:\Oracle\Middleware\wlserver_10.3\server\lib>dir CertGen* Volume in drive C is Windows8_OS Volume Serial Number is 8C04-A406 Directory of C:\Oracle\Middleware\wlserver_10.3\server\lib 01/03/2015 09:29 PM 540 CertGenCA.der 01/19/2015 07:47 PM 786 CertGenCA.pem

Continue reading »

Weblogic SAML Attribute Mapper Example

  It is useful to send custom attributes or tokens in the attribute having identity information of the authenticated user.This identity information can be further used by the detination site to access services on behalf of the user. To implement a SAML Attribute Mapper on Weblogic Server, you need to

Continue reading »

How to check for SSL POODLE / SSLv3 bug on WebLogic? How to fix

Details of the SSL POODLE bug can be found here We can address it in the following way. 1) Disable SSL 3.0 support in the client. 2) Disable SSL 3.0 support in the server. We can start WebLogic server with the following JVM option -Dweblogic.security.SSL.protocolVersion=TLS1 Ref :- Use specific SSL

Continue reading »

Two way SSL Webservice on Weblogic Server

This article provides sample Webservice and Webservice Client for two way SSL. It also demonstrates the use of WLSSSLAdapter class to send certificates to the server. 1. Create a JWS with the following policy  : Wssp1.2-2007-Https-ClientCertReq.xml   package examples.webservices.security_jws; import weblogic.jws.WLHttpTransport; import weblogic.jws.Policies; import weblogic.jws.Policy; import javax.jws.WebService; import javax.jws.WebMethod; import javax.jws.soap.SOAPBinding; @WebService(name="SecureHelloWorldPortType",

Continue reading »

Recommended Best Practices for Securing WebLogic Server.

Disable SSL V2, Weak Ciphers, and Null Encryptions You can use the following jvm options to disable Weak Ciphers. -Dweblogic.security.SSL.allowUnencryptedNullCipher=false -Dweblogic.security.disableNullCipher=true Steps to disable SSL V2 follows later. Use Secure Cookies to Prevent Session Stealing Please refer to this article : link Configure WebLogic Server to use a Specific Cipher

Continue reading »

Using RolesAllowed and SecurityRole annotations to secure Webservices on Weblogic

1. Write a JWS that uses the RolesAllowed and SecurityRole annotation package examples.webservices.security_jws; import weblogic.jws.WLHttpTransport; import weblogic.jws.Policies; import weblogic.jws.Policy; import javax.jws.WebService; import javax.jws.WebMethod; import javax.jws.soap.SOAPBinding; import weblogic.jws.security.RolesAllowed; import weblogic.jws.security.SecurityRole; @WebService(name="SecureHelloWorldPortType", serviceName="SecureHelloWorldService", targetNamespace="http://www.bea.com") @SOAPBinding(style=SOAPBinding.Style.DOCUMENT, use=SOAPBinding.Use.LITERAL, parameterStyle=SOAPBinding.ParameterStyle.WRAPPED) @WLHttpTransport(contextPath="SecureHelloWorldService", serviceUri="SecureHelloWorldService", portName="SecureHelloWorldServicePort") @RolesAllowed ( { @SecurityRole (role="testrole") } ) public class SecureHelloWorldImpl { @WebMethod()

Continue reading »