Setting up the Load Balancer in SSL Mode for Web Server 7 (Sun Java System Application Server 9.1 High Availability Administration Guide)

Sun Java System Application Server 9.1 High Availability Administration Guide

Previous: To Export and Import the DAS Certificate for Sun Java System Web Server 6.1
Next: To Export and Import the DAS Certificate for Sun Java System Web Server 7

Setting up the Load Balancer in SSL Mode for Web Server 7

Start the Web Server's Administration Server using the following command.
```
webserver-install-dir/admin_server/bin/startserv
```
Create an HTTPS listener as explained in the following steps. If an HTTP listener already exists, you can skip the following steps and proceed to the section To Export and Import the DAS Certificate for Sun Java System Web Server 7.
1. Log in to Web Server Admin console.
2. Select the default configuration. Generally, the default configuration name will be identical to the host name. To do this from the Common Tasks page, select the configuration from the Select Configurations list and click Edit Configuration. Alternatively, open the Configurations page and click on the default configuration name in Configurations table.
3. If you are in the Common Tasks page, click Request Server Certificate. Else, if you are in the Configuration page, open the Certificates page and click the Request button from the Server Certificates table. This is required to create a self signed server certificate for this default configuration.
4. Provide the details requested by the Request Server Certificate window.
  
  While doing so, just ensure that the value provided for "*Server Name (cn)" is the fully qualified domain name (FQDN) of the machine where the web server is installed. For example, if the host name is machine1, and the domain name is server.example.com, then the FQDN is machine1.server.example.com. Select the defaults wherever provided.
  
  You can also create a self-signed certificate using the following command. Make sure that you type the command in a single line.
```
webserver-install-dir/bin/wadm create-selfsigned-cert --user=
admin-user --server-name=host-name 
--nickname=ServerCert --token=internal --config=config-name
```
5. Go back to the selected configuration page.
6. Open the HTTP Listeners page and click the New button. This is to create an SSL-enabled HTTP listener.
7. Provide the details sought by the New HTTP Listener wizard. Ensure that the server name is the FQDN provided in the earlier step. Select the SSL button and from the Certificate list, select the previously created server certificate. For example, cert-machine1.server.example.com.
  
  You can also create an HTTP listener using the following commands. Make sure that you type each command in a single line.
```
webserver-install-dir/bin/wadm create-http-listener 
--user=admin-user --server-name=host-name 
--default-virtual-server-name=default-virtual-server-name 
--listener-port=8090 --config=config-name http-listener-ssl
```
```
webserver-install-dir/bin/wadm set-ssl-prop 
--user=admin-user --http-listener=http-listener-ssl 
--config=config-name enabled=true server-cert-nickname=ServerCert
```
8. Once you have performed the steps listed above, you would see the alert “Deployment Pending” on the top right corner of the Admin console. Click on it and follow the instructions to complete the deployment. This step ensures that the changes to the config store in the web server's Administration Server are copied to the web server instance.