Solved

java application, server 2008

Posted on 2014-04-05
5
1,015 Views
Last Modified: 2014-04-08
hi all experts

i'm having issue and confused on how to inject go-daddy .Cer file to weblogic server
i had been read a lot questions  & answers but not sure the Cer file from godaddy

do i need keytool to convert cer file from godaddy to PEM format?
what out do i have to do after that? can someone give me some link that really point out from godaddy CA standpoint

BTW when i download from godaddy  "Other" platform, this was directed from Godaddy tech guy recommendation, I think godaddy  don't know much about weblogic i was on phone with them for hours but no answer, they asked me call weblogic support. WOW
0
Comment
Question by:VN-PC view
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 63

Expert Comment

by:btan
ID: 39981208
This link shared the steps from the beginning of submission CSR to GD the installation. The keytool use is included in those steps.

You will need
-identity.jks generated from the certificate.crt (CSR request response from GD)
-trust.jks generated from the gd_bundle.crt (RootCA and sometimes an intermediateCA certificate.)

Godaddy should provided two certificate files gd_bundle.crt  and certificate.crt files a/m. Actually you not necessarily need to go for .pem but it is normally for ease to create a certificate chain clubbing them in an order into that single .pem file

From the link, the .pem is created and explained
To use a certificate chain, append the additional PEM-encoded CA digital certificates to the digital certificate that was just issued to you for the WebLogic Server.  The order is important (include the files in the order of trust).  The server digital certificate should be the first digital certificate in the file.  The issuer of that digital certificate should be the next file and so on until you get to the self-signed root certificate authority certificate.  This digital certificate should be the last certificate in the file.  You cannot have blank lines between digital certificates.

The rest of the steps to import into WebLogic Server Admin console is shared in first link to configure the two .jks accordingly

There are additional means which is shared for interest and illustration
How do you install Godaddy SSL Certificate on Weblogic 10.3?
Installing Certificate in Weblogic Keystore
0
 

Author Comment

by:VN-PC view
ID: 39981216
Hi  breadtan

There are additional means which is shared for interest and illustration
1) How do you install Godaddy SSL Certificate on Weblogic 10.3?
2) Installing Certificate in Weblogic Keystore


so I don't have to convert to PEM? this is just optional? all I have to follow step 1 & 2
many thanks
0
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 39981228
At least from (1) and (2) that is done w/o pem mentioned as it is doing on single cert and not cert chain. So if it is cert chain, then you need pem.

Pls do note the other link that I shared

Note: If you are creating a file with the digital certificates of multiple certificate authorities or a file that contains a certificate chain, you must use PEM format.   WebLogic Server provides a tool for converting DER format files to PEM format, and visa versa.
0
 

Author Closing Comment

by:VN-PC view
ID: 39981248
Many thanks for the prompt reply.
0
 
LVL 62

Expert Comment

by:gheist
ID: 39986954
Wrong window, sorry
0

Featured Post

MIM Survival Guide for Service Desk Managers

Major incidents can send mastered service desk processes into disorder. Systems and tools produce the data needed to resolve these incidents, but your challenge is getting that information to the right people fast. Check out the Survival Guide and begin bringing order to chaos.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

So you need a certificate so you can offer SSL encryption.  But which one should you get?  There are so many choices out there! Here is a generic overview of the main types of SSL certificates sold by the majority of commercial Certification Auth…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question