Admin Console Tasks for Listeners and JMX Connectors
To configure security for HTTP listeners
Each virtual server in the HTTP service provides network connections through one or more HTTP listeners. With the Admin Console, create new HTTP listeners and edit the security settings of existing HTTP listeners.
-
In the Admin Console tree component, expand the Configurations node.
-
Select the instance to configure:
-
Expand the HTTP Service node.
-
Select the HTTP Listeners node.
-
Select an HTTP listener to edit an existing listener or click New and follow the procedure in To create an HTTP listener to create a new listener.
-
Follow the procedure in To set listener security properties to set security properties.
-
Click Save to save the changes, or click the browser’s Back button to cancel without saving.
Equivalent asadmin command
create-http-listener
To configure security for IIOP listeners
The Application Server supports CORBA (Common Object Request Broker Architecture) objects, which use the Internet Inter-Orb Protocol (IIOP) to communicate across the network. An IIOP listener accepts incoming connections from remote clients of EJB components and from other CORBA-based clients. With the Admin Console, create new IIOP listeners and edit the settings of existing IIOP listeners.
-
In the Admin Console tree component, expand the Configurations node.
-
Select the instance to configure:
-
Expand the ORB node.
-
Select the IIOP Listeners node.
-
Select an IIOP listener to edit that listener or click New and follow the procedure in To create an IIOP listener to create a new listener.
-
Follow the procedure in To set listener security properties to set security properties.
-
Click Save to save the changes, or click Load Defaults to restore the properties to their default values.
If a new listener was created, it will now be listed in the Current Listeners table on the IIOP Listeners page.
Equivalent asadmin command
create-iiop-listener
To configure security for the Admin Service’s
JMX connector
-
In the Admin Console tree component, expand the Configurations node.
-
Select the instance to configure:
-
Expand the Admin Service node.
-
Select the admin service to be modified.
-
Follow the procedure in To set listener security properties to set security properties.
-
Click Save to save the changes, or click Load Defaults to restore the properties to their default values.
To set listener security properties
This procedure applies to HTTP listener, IIOP listener, and JMX Connector security properties.
-
In the Edit HTTP Listener, Edit IIOP Listener, or Edit JMX Connector page, go to the section labeled SSL.
-
Check the Enabled box in the Security field to enable security for this listener. When this option is selected, you must select SSL3 or TLS to specify which type of security is enabled, and you must enter a certificate nickname.
-
Check the Enabled box in the Client Authentication field if clients are to authenticate themselves to the Application Server when using this listener.
-
Enter the keystore alias in the Certificate Nickname field if the Enabled box is checked. The keystore alias is a single value that identifies an existing server key pair and certificate. The certificate nickname for the default keystore is s1as.
To find the Certificate Nickname, use the certutil utility, as described in Using Network Security Services (NSS) Tools.
-
Select SSL3 and/or TLS if the Enabled box is checked. By default, both SSL3 and TLS are enabled.
-
Enable individual cipher suites, if needed. By default, all supported cipher suites are enabled. Ciphers are discusses in About Ciphers.
-
Select Save to save the changes or Load Defaults to cancel.
- © 2010, Oracle Corporation and/or its affiliates