Technical data
14 Managing Security
14-54 Administration Guide
Server Certificate Chain File
Name
Full directory location of the digital certificate used to sign
the digital certificate for WebLogic Server.
Start the directory location at the root of the WebLogic
Server installation. For example:
\wlserver6.1\config\myapp\cacert.pem.
The file extension (.DER or .PEM) indicates the method that
WebLogic Server should use to read the contents of the file.
When using a certificate chain with WebLogic Server, the
file should contain as its first member the digital certificate
used to sign the digital certificate for WebLogic Server, the
second member should contain a digital certificate used to
sign the first digital certificate in the file and so on. The last
digital certificate in the file should be self-signed.
The Server Certificate Chain File Name attribute is required
to have at least one digital certificate. If there is only one
digital certificate in the file, the digital certificate must be
self-signed (i.e., it must be a root CA digital certificate).
When obtaining a digital certificate from a certificate
authority, you should receive the digital certificate of the
certificate authority and other immediate digital certificates
from the certificate authority.
Client Certificate Enforced Defines whether or not clients must present digital
certificates from a trusted certificate authority to WebLogic
Server.
Trusted CA File Name Name of the file that contains the digital certificate for the
certificate authorities trusted by WebLogic Server. The file
specified in this attribute can contain a single digital
certificate or multiple digital certificates for certificate
authorities. The file extension (
.DER or .PEM) tells
WebLogic Server how to read the contents of the file.
CertAuthenticator Name of the Java class that implements the
CertAuthenticator interface. For more information about
using the
weblogic.security.acl.CertAuthenticator
interface, see Mapping a Digital Certificate to a WebLogic
User.
Table 14-18 SSL Protocol Attributes
Attribute Description