Hi All,
I am not sure this is the right place to post question about weblogic, but I could not find a more suitable forum to post in.
just to make things clear, I am very novice regarding weblogic ! so please bear with me :)
My task is to get Forms to work on SSL using FSAL.
I have setup Forms/Reports 12.2.1.19 on weblogic 12.2.1.4 . October patches installed for weblogic.
I have created the key pair (keytool), and using the self signed certificate from that pair, which i have saved n the ‘java default cacert’ keystore (im planning on using a separate one altogether here, when i apply this to production, to avoid issues with java updates overwriting the cacerts file.
I managed to get everything working on SSL. I then had an issue, that when I disabled the administration port 7001 on HTTP, to leave only 7002 port on HTTPS, i was getting wrong information from console and EM about WLS_FORMS and WLS_REPORTS being down. I managed to sort that out (After some digging around) by specifying the Admin server info (htpps://10.1.1.10:7002) in the startup.properties files for WLS_FORMS and WLS_REPORTS. so far all good… happy days…
then in the WLS_FORMS.out i can see the warning the default CA us being used. not much of a bother really, but i thought lets try and get rid of it…i have come accross Oracle doc 2275086.1
I have performed the actions the document suggests (i have used my original key-pair and the public key from that, instead of creating a new one) …
upon restart of the servers, the Warning of the Demo CA being used is now gone….but unfortunately i am getting these warnings, and it seems that the WLS_FORMS server cannot talk to Admin Server through SSL.
<The server's SSL configuration is not available. There will potentially be SSL handshake failures.>
<Warning> <Security> <BEA-090924> <JSSE has been selected by default, since the SSLMBean is not available.>
<Info> <Security> <BEA-090908> <Using the default WebLogic SSL Hostname Verifier implementation.>
<Notice> <Security> <BEA-090169> <Loading trusted certificates from the jks keystore file D:\Oracle\Middleware\Oracle_Home\wlserver\server\lib\DemoTrust.jks.>
<Notice> <Security> <BEA-090169> <Loading trusted certificates from the jks keystore file C:\apps\java\jdk\jre\lib\security\cacerts.>
<Info> <Management> <BEA-141307> <Unable to connect to the Administration Server. Waiting 5 second(s) to retry (attempt number 1 of 3).>
<Info> <Management> <BEA-141307> <Unable to connect to the Administration Server. Waiting 5 second(s) to retry (attempt number 2 of 3).>
<Info> <Management> <BEA-141307> <Unable to connect to the Administration Server. Waiting 5 second(s) to retry (attempt number 3 of 3).>
<Info> <Management> <BEA-141298> <Could not register with the Administration Server: java.rmi.RemoteException: [Deployer:149150]An IOException occurred while reading the input.; nested exception is:
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target>
<Info> <Management> <BEA-141107> <Version: WebLogic Server 12.2.1.4.0 Thu Sep 12 04:04:29 GMT 2019 1974621>
<Alert> <Management> <BEA-141151> <The Administration Server could not be reached at https://10.1.1.10:7002.>
<Info> <Configuration Management> <BEA-150018> <This server is being started in Managed Server independence mode in the absence of the Administration Server.>
<Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING.>
Maybe i thought Admin Server is not fully up etc( as suggested by an oracle doc) so i restarted the WLS_FORMS server long after admin server was up and running. Still getting the same errors/warning as shown above.
I am at loss at this point as i cannot find any more info how to solve this. are there any other log files i can chase to see any more details ?
please give me some ideas ?
if you need any more info etc please let me know !
thanks,
George