Recovering Weblogic Admin Console password … through a JAVA program
Continue readingCategory: Security
this category contains posts related to Security
Userlockout feature of Weblogic Server
To avoid BRUTE FORCE Attacks on Weblogic Server, WLS provides a feature called UserLockout.As the name implies, we can use
Continue readingConfiguring SSL on Weblogic Server – Custom Identity and Custom Trust
I have been getting a lot of request for creating a very simple document for configuring SSL on Weblogic Server.
Continue readingList Users and Groups in Weblogic using JMX
There are times when an Application Needs to interact with the Weblogic Server Embedded LDAP Server and Add/Modify/List users or
Continue readingJAAS Login in Weblogic Server
The Java Authentication and Authorization Service (JAAS) is a standard extension to the security in the J2SE Development Kit 5.0.
Continue readingIssues Relating to urandom/random on Weblogic Server in Linux Environment
To generate random numbers, linux provides two devices /dev/random and /dev/urandom . /dev/random depends on the Entropy pool ( created
Continue readingSSL JNDI Client 2 way SSL with Weblogic
This is a Simple demonstration of doing a JNDI lookup using 2 Way SSL client. Step-1). Create Self Signed Certificate
Continue readingEnforce Weblogic to use Sun SSL implementation rather than Certicom
Add the following flag in the startup script -Djava.protocol.handler.pkgs=com.sun.net.ssl.internal.www.protocol-Dssl.SocketFactory.provider=com.sun.net.ssl.internal.SSLSocketFactoryImpl-DUseSunHttpHandler=true-Dweblogic.wsee.client.ssl.usejdk=true (for webservice clients)
Continue readingCommon LDAP Server Issues
The causes of the exceptions are discussed in brief. If you have anything to add, feel free to comment! com.bea.security.providers.xacml.store.ldap.LDAPException:
Continue readingSecuring Cookies on Weblogic Server
HTTPOnly HTTPOnly flag is used to prevent Client side scripts to read the cookies (provided the Browser Supports it). By
Continue reading