1 Configuring Deployment Settings

This chapter provides information about configuring deployment settings. You configure settings in Oracle WebLogic to ensure that individual Oracle Communications Design Studio users can deploy to run-time environments, and to enable SSL (secure sockets layer) on the WebLogic server. Additionally, you can define settings that determine how the deployment messages appear in the Console view.

Note:

The procedures described in this chapter assume that you are using the WebLogic security realm. See the Oracle WebLogic Server documentation for installation and configuration instructions.

Setting Up Users for Design Studio Deployment

Before individual Design Studio users can deploy cartridges to run-time environments, you must create users (if necessary) and assign them to the WebLogic Cartridge_Management_WebService parent group. The run-time environment and the type of cartridges individual Design Studio users deploy determine to which additional parent groups users must be assigned.

To set up users for Design Studio deployment:

  1. Log in to the WebLogic Administration Console.

  2. Click Security Realms.

    The Summary of Security Realms page appears.

  3. In the Realms table, click myrealm.

  4. In Settings for myrealm, click the Users and Groups tab.

  5. On the Users tab, click New.

    The Create a New User page appears.

  6. In the Name field, enter the user name.

  7. In the Description field, enter information about the user.

  8. In the Password field, enter a password for the user.

  9. Confirm the password, then click OK.

    The user appears in the Users table.

  10. In the Users table Name column, click the user.

    The Settings page appears.

  11. Click the Groups tab.

  12. In the Parent Groups area, select Cartridge_Management_WebService from the Available column and move it to the Chosen column.

  13. Click Save.

Enabling SSL Connections

Before individual Design Studio users deploy cartridges from Design Studio using an SSL connection, you must enable SSL in the WebLogic server to ensure that the Cartridge Management web service accepts the SSL connection. Additionally, you must define the environment connection parameters using HTTPS and include the correct SSL listening port.

Note:

When configuring SSL for WebLogic Server, define the minimum protocol version as Transport Layer Security (TLS) version 1.0. See Oracle Fusion Middleware Securing Oracle WebLogic Server for more information about configuring SSL.

The SSL keys must be made available to Design Studio and the keystore must include keys for any environment connection using SSL. See the Design Studio Help for information about defining SSL properties on the Studio Environment editor SSL tab.

To enable SSL connections:

  1. Log in to the WebLogic Administration Console.

  2. In the Environment area, click Servers.

    The Summary of Servers page Configuration tab appears.

  3. In the Servers table, click the appropriate server.

    The Settings tabs appear.

  4. On the Configuration tab General subtab, select SSL Listen Port Enabled.

  5. In the SSL Listen Port field, enter the SSL port number.

  6. Click Save.

  7. Start Design Studio.

  8. From the Studio menu, select Show Environment Perspective.

  9. In the Environment tab, double-click an environment.

    The environment opens in the Studio Environment editor.

  10. Click the Connection tab.

  11. In the Address field, enter the following:

    https://Host:Port/cartridge/wsapi

    where:

    Host is the host name of the system and Port is the SSL listening port number.

  12. Click the SSL tab.

  13. In the Keystore field, enter the location of the target server keystore.

    For example, in a test environment, you can enter the location for the DemoTrust.jks keystore (from the server installation). Or, you can enter a replica.

    Note:

    If you are using a WebLogic Server DemoTrust keystore, and if the Java version installed on the client machine is version 1.7u40 or later, you must change the RSA key size. See "Changing the Keysize Value" for more information.

    For more information about configuring identity and trust for WebLogic Server, see "Configuring Identify and Trust" on the Oracle Help Center:

    http://docs.oracle.com/cd/E23943_01/web.1111/e13707/identity_trust.htm

    Do not use the DemoTrust.jks keystore in a production environment.

  14. Click Save.

Changing the Keysize Value

If you are using a WebLogic Server DemoTrust keystore, and if the Java version installed on the client machine is version 1.7u40 or later, you must change the RSA key size from 1024 Mbs to 256 Mbs in the java.security file.

For more information about configuring identity and trust for WebLogic Server, see "Configuring Identify and Trust" on the Oracle Help Center:

http://docs.oracle.com/cd/E23943_01/web.1111/e13707/identity_trust.htm

To change the key size value:

  1. On the client machine, open the java.security file, located in the home directory:

    JRE_Home/lib/security/java.security

  2. Change the following line:

    jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024

    To:

    jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 256

  3. Save the file.

Configuring Deployment Messages

You use log levels to configure deployment messages for the Console view and for log files. You can modify these log levels in an application server, for example, WebLogic server, using WLST commands.

Note:

Design Studio 7.4 does not support Log4j for modifying log levels. Instead, use WLST commands to configure deployment messages.

For information about logging custom WLST commands, see Oracle Fusion Middleware WLST Command Reference for Infrastructure Components.

For information about using WLST commands, see Oracle Fusion Middleware Administering Oracle Fusion Middleware.

Note:

Refer to the corresponding WLST documents based on your application runtime WebLogic version.

Example 1-1 Sample WLST Commands for Configuring Deployment Messages

/scratch/oracle/FMW12c/Oracle_Home/wlserver/common/bin/wlst.sh
Initializing WebLogic Scripting Tool (WLST) ...
Welcome to WebLogic Server Administration Scripting Shell
Type help() for help on available commands
wls:/RI/serverConfig> connect('<userid>','<password>','<host>:<port>')
Connecting to <host>:<port> with userid <userid> ...
Successfully connected to Admin Server "AdminServer" that belongs to domain "suite_domain".
Warning: An insecure protocol was used to connect to the 
server. To ensure on-the-wire security, the SSL port or 
Admin port should be used instead.
wls:/suite_domain/serverConfig> listLogHandlers(target='AdminServer', name='console-handler')
Handler Name: console-handler
type:   oracle.core.ojdl.logging.ConsoleHandler
wls:/suite_domain/serverConfig> configureLogHandler(name="console-handler", level="TRACE:32")
Handler Name: console-handler
type:   oracle.core.ojdl.logging.ConsoleHandler
wls:/suite_domain/serverConfig> setLogLevel(target='AdminServer', logger='oracle.communications.platform.cartridgemanagement', level='TRACE:32', addLogger='1')
wls:/suite_domain/serverConfig> getLogLevel(logger='oracle.communications.platform.cartridgemanagement',  target='AdminServer')
TRACE:32