1. Please access the webservice via the browser https://....... and when you are redirected by the
webservice, download the certificate using the browser.
2. Alternatively, please ask the external service vendor support team to send you the "public" certificate.
3. Create a keystore(keytool -importcert -alias ExternalCert -file ExternalCert.crt -keystore
mykeystore.jks), give it any name: myTrust.jks and copy this certificate in the MW_HOME/server/lib
directory.
4. On windows this is C:\Oracle\Middleware\wlserver_10.3\server\lib folder.
5. In the directory $MW_HOME/user_projects/domain/soa_domain/bin (Windows:
C:\Oracle\Middleware\user_projects\domains\soa_domain\bin) in the cmd/sh file
setDomainEnv.sh/setDomainEnv.cmd, modify EXTRA_JAVA_PROPERTIES to include
-Djavax.net.ssl.trustStore=%WL_HOME%\server\lib\myTrust.jks
6.Please verify the complete certificate chain of importing all certificates in the certificate store.
The above steps will set the weblogic trust store with external server public certificate which will allow
the https communication to the external server.
No comments:
Post a Comment