Obtaining and Installing CA Certificates on WebLogic Server

On the physical machine with an Oracle WebLogic Server running an EnterpriseOne server, create a keystore and configure it with a certificate. If you have multiple EnterpriseOne servers installed within the same domain, you need only a single certificate for the keystore.

The following steps outline the process to create a keystore and generate a Certificate Signing Request (CSR), which is described in detail in the "Configuring Keystores: Main Steps" in the Oracle Fusion Middleware Administering Security for Oracle WebLogic Server 12.2.1.2.0 Guide. After performing these tasks, use the HTTPS protocol to verify access to each SSL-enabled server.

1. Create the keystore that will hold the server identity certificate.

2. Create a Certificate Signing Request (CSR), and submit it to a Certificate Authority.

   For a production environment, Oracle strongly recommends obtaining a certificate from a reputable certificate authority

3. Import the identity and trust certificates returned by the Certificate Authority.

4. Configure the trust and identity keystores with Oracle WebLogic Server.