WebLogic 8 and 9 SSL Certificate Installation
If you have not yet created a Certificate Signing Request (CSR) and ordered your certificate, see
CSR Creation :: WebLogic Server 8 & 9 SSL Certificate Creation.
Install your SSL Digital Certificate in WebLogic
First, download the your_domain_com.p7b certificate file from your DigiCert Account (from the "My Orders" tab, click the order number, then the blue download link).
Run the following command to install the certificate file to your keystore:
keytool -import -trustcacerts -alias server -file your_domain_com.p7b -keystore your_domain.jks
You should get a confirmation stating that the "Certificate reply was installed in keystore"
If it asks if you want to trust the certificate. Choose y or yes.
The installation of this file loads all the necessary certificates to your keystore. Now you just need to configure your server to use it.
Configuring the Keystore for use in WebLogic
- On your WebLogic server, expand the "Servers" node and choose the server you will be configuring.
Next, go to Configuration-->Keystores and SSL.
Several default keystores or previously installed keystores may be displayed under "Keystore Configuration."
- To enable your new keystore, click the "Change..." link under "Keystore Configuration."
- Choose "Custom Identity and Java Standard Trust" as your keystore configuration type, then click Continue.
- Under "Custom Identity Keystore File Name" enter the full path to the your_domain.jks file on your server.
- For "Custom Identity Keystore Type" select jks.
The "Custom Identity Keystore PassPhrase" should be the password you specified when the keystore was created.
If you have forgotten that password, you will need to begin the process of creating your keystore from the beginning.
- You will again be asked to enter your keystore password and confirm.
- Click Continue, and then Finish.
- You will now need to go back under the "Servers" node and select the server you are configuring.
- Next, go to Configuration-->Keystores and SSL, then click the "Change..." link under "Keystore Configuration."
- In the Configure SSL page, choose "Key Stores" as the method in which identity and trust is stored for the WebLogic server.
Specify the "Private Key Alias" and "Passphrase" that were used when creating your keystore.
If you followed our instructions or used our command generator, "server" is your alias. The passphrase is the keystore password.
Click Continue, then Finish.
Reboot the WebLogic server. Your keystore should now be installed and enabled.
Installing your SSL Certificates in Java Web Server
How to install your SSL Digital Certificate.