Generating Self-Signed Certificates Using the utils.CertGen Utility
7.2 Changing the Location of Node Manager Log
Edit the nodemanager.properties file located in the MW_HOMEwlserver_ 10.3commonnodemanager directory. Add the new location for the LogFile. Oracle recommends locating this file out of the MW_HOME directory, and inside the admin directory for the deployment using the following command: LogFile=ORACLE_BASEadminnodemanager.log Restart Node Manager for the change to take effect.7.3 Enabling Host Name Verification Certificates for Node Manager in SOAHOST1
Perform these steps to set up host name verification certificates for communication between the Node Manager and the Administration Server. ■ Step 1: Generating Self-Signed Certificates Using the utils.CertGen Utility ■ Step 2: Creating an Identity Keystore Using the utils.ImportPrivateKey Utility ■ Step 3: Creating a Trust Keystore Using the Keytool Utility ■ Step 4: Configuring Node Manager to Use the Custom Keystores7.3.1 Generating Self-Signed Certificates Using the utils.CertGen Utility
Follow these steps to create self-signed certificates on SOAHOST1.mycompany.com. These certificates should be created using the network namealias. When a server is using a virtual hostname it is implied that the server can be migrated from one node to another. Consequently, the directory where keystores and trust keystores are maintained ideally must be located on a shared storage that is accessible from the failover node. For information on using trust CA certificates instead, see Configuring Identity and Trust in Oracle Fusion Middleware Securing Oracle WebLogic Server.1. Set up your environment by running the WL_
HOMEserverbinsetWLSEnv.sh script: In the Bourne shell, run the following command: SOAHOST1 . setWLSEnv.sh Verify that the CLASSPATH environment variable is set: SOAHOST1 echo CLASSPATH 2. The directory where keystores and trust keystores are maintained must be on shared storage that is accessible from all nodes so that when the servers fail over manually or with server migration, the appropriate certificates can be accessed from the failover node. Oracle recommends using central or shared stores for the certificates used for different purposes for example, SSL set up for HTTP invocations. In this case, SOAHOST2 uses the cert directory created for SOAHOST1 certificates. Create a user-defined directory for the certificates. SOAHOST1 mkdir certs 3. Change directory to the user-defined directory. SOAHOST1 cd certs Setting Up Node Manager 7-3 4. Run the utils.CertGen tool from the user-defined directory to create the certificates for both SOAHOST1 and ADMINVHN. Syntax: java utils.CertGen key_passphrase cert_file_name key_ file_name [export | domestic] [hostname] Examples: SOAHOST1 java utils.CertGen welcome1 SOAHOST1.mycompany.com_cert SOAHOST1.mycompany.com_key domestic SOAHOST1.mycompany.com SOAHOST1 java utils.CertGen welcome1 ADMINVHN.mycompany.com_cert ADMINVHN.mycompany.com_key domestic ADMINVHN.mycompany.com7.3.2 Creating an Identity Keystore Using the utils.ImportPrivateKey Utility
Parts
» Oracle Fusion Middleware Online Documentation Library
» What is an Enterprise Deployment? Terminology
» Load Balancer Requirements Web Tier
» Oracle Identity Management Application Tier
» Data Tier What to Install Unicast Requirement
» Installation and Configuration Procedure Overview of Installation Strategies
» Database Host Requirements Supported Database Versions Initialization Parameters
» Loading the Oracle Fusion Metadata Repository in the Oracle RAC Database
» Configuring SOA Schemas for Transactional Recovery Privileges Backing Up the Database
» IPs and Virtual IPs Firewalls and Ports
» Hardware Requirements LDAP as Credential and Policy Store
» Installing Oracle HTTP Server on WEBHOST1 and WEBHOST2
» Validating Oracle HTTP Server Through the Load Balancer Backing Up Oracle HTTP Server
» Installing Oracle WebLogic Server Installing Oracle Fusion Middleware for WebCenter
» Enter HOMEoraInventory, where HOME is the home directory of the user Click Next.
» Applying the Java Required Files JRF Template to the WSM-PM_ Cluster
» Manually Failing Over the Administration Server to SOAHOST2
» Restarting the Administration Server Configuring Oracle Coherence for Deploying Composites
» Setting Connection Destination Identifiers for B2B Queues
» Validating Access Through Setting the Frontend HTTP Host and Port
» Installing Oracle Fusion Middleware Home Extending the Domain for WebCenter Components
» Generating Self-Signed Certificates Using the utils.CertGen Utility
» Configuring Node Manager to Use the Custom Keystores
» Configuring Search Services About Adding Oracle UCM to a Domain
» Extending the Domain to Include Oracle UCM
» Configuring the WC_UCM1 Managed Server
» Reassociating the Domain Policy Store
» Running the OAM Configuration Tool
» Configuring IP Validation for the Webgate Understanding Virtual Host configuration
» Configuring Virtual Hosts for OAM 10g
» The RREG Tool Register the WebGate Agent
» Configuring System Properties Setting Up Discussions Server to Use OAM as SSO Provider
» Monitoring the Topology Configuring UMS Drivers
» Managing Space in the SOA Infrastructure Database
» Performing Backups and Recoveries
Show more