Once you have received your Certificate files from IPSCA,
open a text editor and paste the contents of each certificate
one after another in the following order:
Installing a certificate chain
Before you can add your
certificate into the keystore, you must first include the certificates chain.
You must install the following public certificates:
Copy both the Private Key and the ipscacert.pem files into the \wlserver6.0\config\mydomain directory.
Assign protections to the private key file and the ipscacert.pem files so that only the system User of
WebLogic Server has read privileges and all other users have no privileges to access the private key file
or digital certificate(s).
Defining Trusted Certificate Authorities:
Using a text editor, paste the contents of the IPSServidores (IPSServidores.crt)
to the end of the contents of the Intermediate Certificate (IPSCACLASEA1.crt). Save the new file as chained.pem
Copy chained.pem into the \wlserver6.0\config\mydomain directory of your WebLogic Server.
Configure WebLogic Server to use the SSL Protocol:
You need to enter the following information on the SSL tab in the Server Configuration window:
- In the Server Certificate File Name field, enter the full directory location and name of the digital certificate for WebLogic Server (ipscacert.pem).
- In the Trusted CA File Name field, enter the full directory location and name of the digital certificate for combined certificate file (chained.pem).
- In the Server Key File Name field, enter the full directory location and name of the private key file for WebLogic Server.
- Make sure that SSL is enabled.
- Set the SSL Listen Port to 443
- Client Certificate Enforced should not be checked for most situations
