• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Doubt about WL keystore

 
Pablo Caballero
Greenhorn
Posts: 10
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have an app deployed in WL 10.3. This app acts like a web server client (using CXF 2.2.5).
The web service server (external company) use a self signed certificate. Therefore I added it to the WL trust keystore. But the app is not working because it looks in the VM keystore (/opt/bea/jrockit_160_05/jre/lib/security/cacerts). Of course, if I add the cert in the VM ks everything works ok. What should I do to use WL ks?

Thanks in advance

Regards
 
robin patel
Greenhorn
Posts: 16
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

In order to make it working you need to specifically add the below parameters in your start up scripts of the WLS server


-Dweblogic.webservice.client.ssl.trustedcertfile=Give the location and the fully qualified name of the WLS Trust
-Dweblogic.webservice.client.ssl.strictcertchecking=false
-Dweblogic.security.SSL.ignoreHostnameVerification=true
-Dweblogic.security.SSL.enforceConstraints=off

Let me know if you are able to use the WL trust keystore.


Regards,
Rob
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic