SSL Certificate Installation Instructions

WebLogic 6+

Firstly when your issuance email arrives it will contain your web server certificate. Copy your web server certificate into a text editor such as notepad including the header and footer. You should then have a text file that looks like:

-----BEGIN CERTIFICATE-----
[encoded data]
-----END CERTIFICATE-----

Make sure you have 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white space, extra line breaks or additional characters have been inadvertently added. Save the certificate in the /serverroot/config directory as yourdomain.pem

1. The certificate must be converted to binary (DER) format. WebLogic provides the pem2der utility to do this. In order for this utility to work, the Java ClassPath variable must include /bea/wlserver6.1/lib/weblogic.jar.

   java utils.pem2der yourdomain.pem

2. OpenSSL can also be used to convert the certificate to binary format www.openssl.org. The command is:

   openssl x509 -in yourdomain.pem -inform PEM -outform DER -out yourdomain.der

3. Configure the following SSL Protocol settings for the server that you purchased the certificate for. Server Key File Name - The private key file that was created while generating the request.

   /serverroot/yourdomain.der - by default

4. Server Certificate File Name - The Certificate that you purchased.

   /serverroot/yourdomain.der

5. After making the necessary changes, select Apply. You will need to restart the server instance.

Test your certificate by using a browser to connect to your server. Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP. The padlock icon on your browser will be displayed in the locked position if your certificates are installed correctly and the server is properly configured for SSL.