Generating Identity Key Store
The following command is being to generate the private key , public key , and Key store.
keytool -genkey -alias identity -keyalg RSA -keysize 2048 -keypass <key password> -keystore trust.jks -storepass <storepassword>
Generating Trust Key Store
The following command is being to generate the private key , public key , and Key store of the Trust Key store.
keytool -genkey -alias trust -keyalg RSA -keysize 2048 -keypass <key password> -keystore trust.jks -storepass <storepassword>
Generating Cert Request From the Identity Key Store
The following command is being to generate the cert request.
keytool -certreq -alias identity -keystore identity.jks -file req.cer
Sending the Cert Request to the Signing Authority
Send the req.cer file to Certificate authority like verysign, thaw etc.
Import the Signed Certificate into the Identity Key Store
The following command is being used import the signed certificate into the identity key store
keytool -importcert -keystore identity.jks -alias server-o1 -file req-signed.cer
Import the Signed Certificate into the Trust Key Store
The following command is being used import the signed certificate into the trust key store
keytool -importcert -alias rootca -file rootca.crt -keystore trust.jks
Enabling the SSL Web Logic Console
1) Enter the following URL and it will display the Web Logic Admin Console Login page.
http://localhost.localdomain:7001/console/
2) Enter the User Name and Password and Click Login Button and It will display the following screen .
3) In the Left hand side menu Click Environment --> Servers and It will display the following screen.
4) Click soa_server1 and it will display the following screen.
Select the SSL Listen Port Enabled Check Box and Click Save Button.
5) Click the Keystores menu and It will display the following screen.
6) Click the Change Button and It will display the following screen
7) Select the Custom Identity and Custom Trust from the Key Stores Combo Box and Click Save Button. And It will Display the following screen.
Enter the Identity Key Store absolute path, Key Store Password, Confirm Key Store Password, absolute path of the Trust Key store, Key store password, Confirm Key Store password. The sample values are shown in the Screen Shot.
8) Click Save Button and It will display the following screen.
9) Click SSL Menu and It will display the following screen.
Finding the Private Key alias in the in the Identity Key store as follows.
identity, May 17, 2012, PrivateKeyEntry Enter the Private Key Alias,Private Key Passphrase, Confirm Private Key Passphrase and Click Save Button and It will display the following screen.
In the above screen shot private alias is identity.
Verifying the SSL URL
https://
You will see the certificate in the browser after accessing the above url.
Please follow the same steps to enable the OIM Server from step 1 to 9.
Good Luck
No comments:
Post a Comment