CSR installation


Installing cert Weblogic Server

Once you have received your Certificate files from IPSCA, open a text editor and paste the contents of each certificate one after another in the following order:

Installing a certificate chain

Before you can add your certificate into the keystore, you must first include the certificates chain. You must install the following public certificates:

  1. Root CA Certificate ( IPSSERVIDORES certificate)
  1. Intermediate Root Certificate ( ipsCACLASE1 certificate)
  1. Server Certificate (the attached file in the mail)
Make sure that you include the beginning and end tags on each certificate. The result should look like this:

-----BEGIN CERTIFICATE-----
(Your Primary SSL certificate: your_domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Intermediate certificate: IPSCACLASEA1.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Root certificate: IPSServidores.crt)
-----END CERTIFICATE-----

Save the combined file as ipscacert.pem

Installing your site certificate

  1. Copy both the Private Key and the ipscacert.pem files into the \wlserver6.0\config\mydomain directory.

  1. Assign protections to the private key file and the ipscacert.pem files so that only the system User of WebLogic Server has read privileges and all other users have no privileges to access the private key file or digital certificate(s).
  1. Defining Trusted Certificate Authorities:
Using a text editor, paste the contents of the IPSServidores (IPSServidores.crt) to the end of the contents of the Intermediate Certificate (IPSCACLASEA1.crt). Save the new file as chained.pem Copy chained.pem into the \wlserver6.0\config\mydomain directory of your WebLogic Server.

  1. Configure WebLogic Server to use the SSL Protocol:

You need to enter the following information on the SSL tab in the Server Configuration window:

- In the Server Certificate File Name field, enter the full directory location and name of the digital certificate for WebLogic Server (ipscacert.pem).
- In the Trusted CA File Name field, enter the full directory location and name of the digital certificate for combined certificate file (chained.pem).
- In the Server Key File Name field, enter the full directory location and name of the private key file for WebLogic Server.
- Make sure that SSL is enabled.
- Set the SSL Listen Port to 443
- Client Certificate Enforced should not be checked for most situations

Click the Apply button to save your changes

  return to the top

© 1996 - 2007 ipsCA, IPS Certification Authority, S.L. all Rights reserved.
Our CPS summarized or complete, CRLs, Root Certificates and legal documents
  can be found in our repository
Read our  Privacy Policy and Terms of Use