?
Solved

WebLogic: Node Manager Error

Posted on 2010-09-08
3
Medium Priority
?
980 Views
Last Modified: 2012-05-10
I am unable to start Managed Server with the help of Node manger.

I have Admin Server, 2 Managed Servers on a same machine. SSL is enabled for Admin server and disabled for 2 managed servers. I can start the Managed Servers using ./startManagedWeblogic.sh script. However, I am using DemoTrust keystore for this domain and in NodeManger.properties has following setting:

KeyStores=CustomIdentityAndCustomTrust
CustomIdentityKeyStoreFileName=/bea/keystores/xxx_identity.jks
...

This .JKS file is configured for some other domain which uses this nodemanager to start its managed server and the works fine. NodeManager.hosts has both the IPs binded.


Here is the Error Message:

[Security:090477]Certificate chain received from xxxxx02 - 162.28.145.13 was not trusted causing SSL handshake failure.. Please ensure that the NodeManager is active on the target machine].]


My question is, Why it is throwing an SSL error, even though SSL port is disabled for both the managed servers?
0
Comment
Question by:imsuniel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 1

Expert Comment

by:bigmacou
ID: 33633537
I may not be understanding, but you are using the DemoTrust keystore on the admin server, yet the CustomIdenty keystore settings are present and uncommented in nodemanager.properties correct?  If this is true this will produce ssl exceptions.  To be very simplistic you may try using CustomIdenty keystore accross all servers.  

If that is not a viable option, you may also follow the steps listed below to run two node managers for two different apps running the same weblogic version on the same server(s).

1. copy ${WL_HOME}/common/nodemanger folder to a folder specific for this new application (ex. ${WL_HOME}/common/{appName}nodemanager) and then copy the startstopNodemanger.sh script, also renaming it specific to the new application (${WL_HOME}/server/bin/${appName}startstopNodeManager.sh).  

2. Once these have been renamed you will need to change the value of NODEMGR_HOME in the new ${appName}startstopNodeManager.sh script to the new directory you created (NODEMGR_HOME="${WL_HOME}/common/${appName}nodemanager")

3. Then edit nodemanager.properties in the new directory and comment out all of the keystore data.  You should only need to specify the values listed below in this file as Demotrust / DemoIdentity  are defaults.

PropertiesVersion=8.1 (or your current version)
ReverseDnsEnabled = true
ListenAddress = (ip or DNS)
ListenPort = (port #) (this must be different than what is being used by the other cluster if both clusters are running on the same machine, this must also be changed in the admin console under the nodemanager tab for each machine.)


Hopefully this helps and did not confuse you.  :)

btw I found this OTN Discussion, which may help.

http://forums.oracle.com/forums/thread.jspa?threadID=982823&tstart=65
0
 

Accepted Solution

by:
imsuniel earned 0 total points
ID: 33640902
Sounds like a good solution. I will definitely give it a try!
I have Production Mode Enabled. So, I was wondering if Demotrust / DemoIdentity Keystore work in this case.

Thanks for responding!
0
 
LVL 1

Expert Comment

by:bigmacou
ID: 33643847
No problem, I am glad that worked for you.  I apologize for the rough delivery, I even confused myself when writing those instructions. :)  Good luck with your new cluster.
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We asked our MSP customer base what their favorite tools were and how they help them serve clients. We focused our questions on favorite tools in the following categories: >PSA tools >RMM tools >Alert management tools >Communication tools and Mo…
We take a look at some of the most common obstacles that IT teams run into as they work relentlessly to keep all the alarms and sirens from going off at once.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question