SSL Configuration on 4.5.1 not working with 6.0SP1
Madhusudan R Chaganthi
weblogic.security.key.server=wcid-srp-mvc.der
weblogic.security.key.certificate=certificate.pem
In 6.0 SP1, I used this
<SSL Enabled="true" ListenPort="443" Name="SrpTest"
ServerCertificateChainFileName=""
ServerCertificateFileName="certificate.pem"
ServerKeyFileName="wcid-srp-mvc.der" TrustedCAFileName=""/>
and I get this error
*************************************************************
<Jul 30, 2001 8:18:45 AM EDT> <Info> <WebLogicServer> <License allows
low streng
th (export) SSL.>
<Jul 30, 2001 8:18:45 AM EDT> <Alert> <WebLogicServer> <Security
configuration p
roblem with certificate file wcid-srp-mvc.der, java.lang.Exception:
Required fil
e wcid-srp-mvc.der which is specified by ServerKeyFileName, was not
found>
java.lang.Exception: Required file wcid-srp-mvc.der which is specified
by Server
KeyFileName, was not found
at
weblogic.t3.srvr.SSLListenThread.resolvePropertyFromLocalFile(SSLList
enThread.java:152)
at
weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:382)
at
weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:297)
at
weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:942)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:403)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
at weblogic.Server.main(Server.java:35)
<Jul 30, 2001 8:18:45 AM EDT> <Info> <Security> <Not listening for SSL,
java.io.
IOException: Security configuration problem with wcid-srp-mvc.der,
java.lang.Exc
eption: Required file wcid-srp-mvc.der which is specified by
ServerKeyFileName,
was not found.>
*************************************************************
Any clues to how to get this up and running would be much appreciated. I
am in a major time crunch here.
Is the fix different when I am using DST instead of Verisign? I need to
get both the DST and Verisign issued certificates configures.
Thanks a bunch
Madhu
Madhusudan R Chaganthi
Earlier, it was a problem with the directory settings in the SSL properties.
Once I got that straightened, I get this error now.
***************************************************************
<Jul 30, 2001 9:55:45 AM EDT> <Info> <WebLogicServer> <License allows low
streng
th (export) SSL.>
weblogic.security.CipherException: Incorrect block length 125 (modulus
length 12
8)
at weblogic.security.RSApkcs1.decrypt(RSApkcs1.java:167)
at weblogic.security.RSAMDSignature.verify(RSAMDSignature.java:89)
at weblogic.security.X509.verifySignature(X509.java:243)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:440)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:297)
at weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:942)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:403)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
at weblogic.Server.main(Server.java:35)
<Jul 30, 2001 9:55:45 AM EDT> <Alert> <WebLogicServer> <Inconsistent
security co
nfiguration, weblogic.security.AuthenticationException: Incorrect block
length 1
25 (modulus length 128) possibly incorrect SSLServerCertificateChainFileName
set
for this server certificate>
weblogic.security.AuthenticationException: Incorrect block length 125
(modulus l
ength 128) possibly incorrect SSLServerCertificateChainFileName set for this
ser
ver certificate
at weblogic.security.X509.verifySignature(X509.java:251)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:440)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:297)
at weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:942)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:403)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
at weblogic.Server.main(Server.java:35)
<Jul 30, 2001 9:55:45 AM EDT> <Info> <Security> <Not listening for SSL,
java.io.
IOException: Inconsistent security configuration,
weblogic.security.Authenticati
onException: Incorrect block length 125 (modulus length 128) possibly
incorrect
SSLServerCertificateChainFileName set for this server certificate.>
*************************************************************