Technical data

ManualsBrandsBEA ManualsComputer equipmentWebLogic Server 7

281

282

283

284

285

286

287

288

289

290

Configuring the SSL Protocol

Administration Guide 14-47

Obtaining a Private Key and Digital Certificate

You need a private key and digital certificate for each deployment of WebLogic Server

that will use the SSL protocol. To acquire a digital certificate from a certificate

authority, you must submit your request in a particular format called a Certificate

Signature Request (CSR). WebLogic Server includes a Certificate Request Generator

servlet that creates a CSR. The Certificate Request Generator servlet collects

information from you and generates a private key file and a certificate request file. You

can then submit the CSR to a certificate authority such as VeriSign or Entrust.net.

Before you can use the Certificate Request Generator servlet, WebLogic Server must

be installed and running.

Note: If you obtain a private key file from a source other than the Certificate Request

Generator servlet, verify that the private key file is in PKCS#5/PKCS#8 PEM

format.

To generate a CSR, perform the following steps:

1. Start the Certificate Request Generator servlet. The

.war file for the servlet is

located in the

\wlserver6.1\config\\applications directory. The .war file

is automatically installed when you start WebLogic Server.

2. In a Web browser, enter the URL for the Certificate Request Generator servlet as

follows:

https://hostname:port/certificate/

The components of this URL are defined as follows:

l hostname is the DNS name of the machine running WebLogic Server.

l port is the number of the port at which WebLogic Server listens for SSL

connections. The default is 7002.

For example, if WebLogic Server is running on a machine named

ogre and it

is configured to listen for SSL communications at the default port

7002 to

run the Certificate Request Generator servlet, you must enter the following

URL in your Web browser:

https://ogre:7002/certificate/

3. The Certificate Request Generator servlet loads a form in your Web browser.

Complete the form displayed in your browser, using the information in the

following table: