Technical data
14 Managing Security
14-50 Administration Guide
6. When you are instructed to select a server type, choose BEA WebLogic Server
to ensure that you receive a digital certificate that is compatible with WebLogic
Server.
7. When you receive your digital certificate from the certificate authority, you need
to store it in the
\wlserver6.1\config\ directory.
8. Configure WebLogic Server to use the SSL protocol, you need to enter the
following information on the SSL tab in the Server Configuration window:
l In the Server Certificate File Name attribute, enter the full directory location
and name of the digital certificate that establishes the identity of WebLogic
Server.
l In the Trusted CA File Name attribute, enter the full directory location and
name of the digital certificate for the certificate authority who signed the
digital certificate of WebLogic Server.
l In the Server Key File Name attribute, enter the full directory location and
name of the private key file for WebLogic Server.
For more information about configuring the SSL protocol, see Defining
Attributes for the SSL Protocol.
9. If you are using a protected private key, use the following command-line option
to start WebLogic Server.
-Dweblogic.management.pkpassword=password
where password is the password for the private key.
Storing Private Keys and Digital Certificates
Once you have a private key and digital certificate, copy the private key file generated
by the Certificate Request Generator servlet and the digital certificate you received
from the certificate authority into the
\wlserver6.1\config\ directory.
Private key files and digital certificates are generated in either PEM or Definite
Encoding Rules (DER) format. The filename extension identifies the format of the
digital certificate file.
A PEM (
.pem) format private key file begins and ends with the following lines,
respectively: