Jump to

• Request
• Response

Modify This Network Access Point

post

/management/weblogic/{version}/edit/servers/{name}/networkAccessPoints/{name}

Modify this network access point.

Request

Supported Media Types

• application/json

Path Parameters

• name: string
  The name property of the instance in the collection.
• version: string
  The version of the WebLogic REST interface.

Header Parameters

• X-Requested-By: string
  The 'X-Requested-By' header is used to protect against Cross-Site Request Forgery (CSRF) attacks. The value is an arbitrary name such as 'MyClient'.

Body ()

Must contain the modified network access point model.

Root Schema : Network Access Point

Type: object

Show Source

• acceptBacklog(optional): integer(int32)
  Minimum Value: 0

  The number of backlogged, new TCP connection requests that this network channel allows. A value of -1 indicates that the network channel obtains its backlog configuration from the server's configuration.

• allowUnencryptedNullCipher(optional): boolean

  Test if the AllowUnEncryptedNullCipher is enabled

  see setAllowUnencryptedNullCipher(boolean enable) for the NullCipher feature.

• channelIdentityCustomized(optional): boolean
  Default Value: false

  Whether or not the channel's custom identity should be used. This setting only has an effect if the server is using a customized keystore. By default the channel's identity is inherited from the server's identity.

• channelWeight(optional): integer(int32)
  Minimum Value: 1

  Maximum Value: 100

  Default Value: 50

  A weight to give this channel when creating server-to-server connections.

• ciphersuites(optional): array Items
  Title: Items

  Indicates the cipher suites being used on a particular WebLogic Server channel.

  The strongest negotiated cipher suite is chosen during the SSL handshake. The set of cipher suites used by default by JSEE depends on the specific JDK version with which WebLogic Server is configured.

  For a list of possible values, see Cipher Suites

• clientCertificateEnforced(optional): boolean
  Default Value: false

  Specifies whether clients must present digital certificates from a trusted certificate authority to WebLogic Server on this channel.

  Constraints

  • doc only secure default : true
• clientInitSecureRenegotiationAccepted(optional): boolean
  Default Value: false

  Indicate whether TLS client initiated secure renegotiation is accepted.

• clusterAddress(optional): string

  The address this network channel uses to generate EJB handles and failover addresses for use in a cluster. This value is determined according to the following order of precedence:

  1. If the cluster address is specified via the NAPMBean, then that value is used

  2. If this value is not specified, the value of PublicAddress is used.

  3. If PublicAddress is not set, this value is derive from the ClusterAddress attribute of the ClusterMbean.

  4. If ClusterMbean.clusterAddress is not set, this value is derive from the listen address of the NAPMbean.

• completeMessageTimeout(optional): integer(int32)
  Minimum Value: 0

  Maximum Value: 480

  The maximum amount of time this network channel waits for a complete message to be received. A value of disables network channel complete message timeout. A value of -1 indicates that the network channel obtains this timeout value from the ServerTemplateMBean.

  This timeout helps guard against denial of service attacks in which a caller indicates that they will be sending a message of a certain size which they never finish sending.

• connectTimeout(optional): integer(int32)
  Minimum Value: 0

  Maximum Value: 240

  The amount of time that this network channel should wait to establish an outbound socket connection before timing out. A value of disables network channel connect timeout.

• customIdentityKeyStoreFileName(optional): string

  The source of the identity keystore. For a JKS keystore, the source is the path and file name. For an Oracle Key Store Service (KSS) keystore, the source is the KSS URI.

  If using a JKS keystore, the keystore path name must either be absolute or relative to where the server was booted.

  If using a KSS keystore, the keystore URI must be of the form:

  kss://system/keystorename

  where keystorename is the name of the keystore registered in KSS.

  The value in this attribute is only used if ServerMBean.KeyStores is CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST, CUSTOM_IDENTITY_AND_CUSTOM_TRUST or CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST

• customIdentityKeyStorePassPhrase(optional): string(password)

  The encrypted custom identity keystore's passphrase. If empty or null, then the keystore will be opened without a passphrase.

  This attribute is only used if ServerMBean.KeyStores is CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST, CUSTOM_IDENTITY_AND_CUSTOM_TRUST or CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST

  When you get the value of this attribute, WebLogic Server does the following:

  1. Retrieves the value of the CustomIdentityKeyStorePassPhraseEncrypted attribute.

  2. Decrypts the value and returns the unencrypted password as a String.

  When you set the value of this attribute, WebLogic Server does the following:

  1. Encrypts the value.

  2. Sets the value of the CustomIdentityKeyStorePassPhraseEncrypted attribute to the encrypted value.

  Using this attribute (CustomIdentityKeyStorePassPhrase) is a potential security risk because the String object (which contains the unencrypted password) remains in the JVM's memory until garbage collection removes it and the memory is reallocated. Depending on how memory is allocated in the JVM, a significant amount of time could pass before this unencrypted data is removed from memory.

  Instead of using this attribute, use CustomIdentityKeyStorePassPhraseEncrypted

• customIdentityKeyStoreType(optional): string

  The type of the keystore. Generally, this is JKS. If using the Oracle Key Store Service, this would be KSS

  If empty or null, then the JDK's default keystore type (specified in java.security) is used. The custom identity key store type is only used if ServerMBean.KeyStores is CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST, CUSTOM_IDENTITY_AND_CUSTOM_TRUST or CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST

• customPrivateKeyAlias(optional): string

  The string alias used to store and retrieve the channel's private key in the keystore. This private key is associated with the server's digital certificate. A value of null indicates that the network channel uses the alias specified in the server's SSL configuration.

• customPrivateKeyPassPhrase(optional): string(password)
  Default Value: oracle.doceng.json.BetterJsonNull@21642818

  The passphrase used to retrieve the server's private key from the keystore. This passphrase is assigned to the private key when it is generated. A value of null indicates that the network channel uses the pass phrase specified in the server's SSL configuration.

• dynamicallyCreated(optional): boolean
  Read Only: true

  Default Value: false

  Return whether the MBean was created dynamically or is persisted to config.xml

• enabled(optional): boolean
  Default Value: true

  Specifies whether this channel should be started.

• excludedCiphersuites(optional): array Items
  Title: Items

  List of cipher suites not to be used by WebLogic Server.

• hostnameVerificationIgnored(optional): boolean

  Specifies whether to ignore the installed implementation of the weblogic.security.SSL.HostnameVerifier interface (when this server is acting as a client to another application server).

• hostnameVerifier(optional): string

  The name of the class that implements the weblogic.security.SSL.HostnameVerifier interface.

  This class verifies whether the connection to the host with the hostname from URL should be allowed. The class is used to prevent man-in-the-middle attacks. The weblogic.security.SSL.HostnameVerifier has a verify() method that WebLogic Server calls on the client during the SSL handshake.

• httpEnabledForThisProtocol(optional): boolean
  Default Value: true

  Specifies whether HTTP traffic should be allowed over this network channel.

  HTTP is generally required by binary protocols for downloading stubs and other resources.

• id(optional): integer(int64)
  Read Only: true

  Return the unique id of this MBean instance

• idleConnectionTimeout(optional): integer(int32)
  Minimum Value: 0

  The maximum amount of time (in seconds) that a connection is allowed to be idle before it is closed by this network channel. A value of -1 indicates that the network channel obtains this timeout value from the ServerTemplateMBean.

  This timeout helps guard against server deadlock through too many open connections.

• inboundCertificateValidation(optional): string
  Allowed Values: [ "BuiltinSSLValidationOnly", "BuiltinSSLValidationAndCertPathValidators" ]

  Indicates the client certificate validation rules for inbound SSL.

  This attribute only applies to ports and network channels using 2-way SSL.

• listenAddress(optional): string

  The IP address or DNS name this network channel uses to listen for incoming connections. A value of null indicates that the network channel should obtain this value from the server's configuration.

• listenPort(optional): integer(int32)

  The default TCP port this network channel uses to listen for regular (non-SSL) incoming connections. A value of -1 indicates that the network channel should obtain this value from the server's configuration.

• loginTimeoutMillis(optional): integer(int32)
  Minimum Value: 0

  Maximum Value: 100000

  The amount of time that this network channel should wait for a connection before timing out. A value of disables network channel login timeout. A value of -1 indicates that the network channel obtains this timeout value from the server's configuration.

• maxBackoffBetweenFailures(optional): integer(int32)
  Minimum Value: 0

  The maximum back off time between failures while accepting client connections. -1 implies that this value is inherited from the server.

• maxConnectedClients(optional): integer(int32)
  Default Value: 2147483647

  The maximum number of clients that can be connected on this network channel.

• maxMessageSize(optional): integer(int32)
  Minimum Value: 4096

  Maximum Value: 100000000

  The maximum message size allowable in a message header.

  This maximum attempts to prevent a denial of service attack whereby a caller attempts to force the server to allocate more memory than is available thereby keeping the server from responding quickly to other requests.

  A client can set this value using the -Dweblogic.MaxMessageSize property.

• minimumTLSProtocolVersion(optional): string

  Get the minimum SSL/TLS protocol version to be used in a network channel.

• name(optional): string
  Read Only: true

  Default Value: <unknown>

  The name of this network channel.

• notes(optional): string

  Optional information that you can include to describe this configuration.

  WebLogic Server saves this note in the domain's configuration file (config.xml) as XML PCDATA. All left angle brackets (<) are converted to the xml entity <. Carriage returns/line feeds are preserved.

  Note: If you create or edit a note from the Administration Console, the Administration Console does not preserve carriage returns/line feeds.

• outboundCertificateValidation(optional): string
  Allowed Values: [ "BuiltinSSLValidationOnly", "BuiltinSSLValidationAndCertPathValidators" ]

  Indicates the server certificate validation rules for outbound SSL.

  This attribute always applies to outbound SSL that is part of WebLogic Server (that is, an Administration Server talking to the Node Manager). It does not apply to application code in the server that is using outbound SSL unless the application code uses a weblogic.security.SSL.ServerTrustManager that is configured to use outbound SSL validation.

• outboundEnabled(optional): boolean

  Specifies whether new server-to-server connections may consider this network channel when initiating a connection. This is only relevant if the connection needs to be bound to the network channel's listen address. This will only work for binary protocols that support both outbound and inbound traffic.

  When this feature is not enabled, connections are initiated using a local address selected by the underlying hardware.

  The default is false.

  Outbound channels are selected at runtime either by virtue of the fact of being the only outbound-enabled channel for the required protocol, or by name in weblogic.jndi.Environment#setProviderChannel

  The HTTP protocol is implicitly enabled for all the outbound channels, but you need to use the WLS client library (HTTP client) and set the channel on the connection.

• outboundPrivateKeyAlias(optional): string
  Read Only: true

  Default Value: oracle.doceng.json.BetterJsonNull@25875b10

  The string alias used to store and retrieve the outbound private key in the keystore. This private key is associated with either a server or a client digital certificate. This attribute value is derived from other settings and cannot be physically set.

  The returned value is determined as follows:

  • If isOutboundPrivateKeyEnabled and isChannelIdentityCustomized return true, the value from getCustomPrivateKeyAlias is returned.

  • Otherwise, the value from SSLMBean#getOutboundPrivateKeyAlias is returned from the ServerMBean for the channel.

• outboundPrivateKeyEnabled(optional): boolean

  Specifies whether the identity specified by getCustomPrivateKeyAlias should be used for outbound SSL connections on this channel. In normal circumstances the outbound identity is determined by the caller's environment.

  Constraints

  • secure default : false
• outboundPrivateKeyPassPhrase(optional): string
  Read Only: true

  Default Value: oracle.doceng.json.BetterJsonNull@7da527eb

  The passphrase used to retrieve the outbound private key from the keystore. This passphrase is assigned to the private key when it is generated. This attribute value is derived from other settings and cannot be physically set.

  The returned value is determined as follows:

  • If isOutboundPrivateKeyEnabled and isChannelIdentityCustomized return true, the value from getCustomPrivateKeyPassPhrase is returned.

  • Otherwise, the value from SSLMBean#getOutboundPrivateKeyPassPhrase is returned from the ServerMBean for the channel.

• privateKeyAlias(optional): string
  Read Only: true

  The string alias used to store and retrieve the channel's private key in the keystore. This private key is associated with the server's digital certificate. This value is derived from other settings on the channel and cannot be physically set.

• privateKeyPassPhrase(optional): string
  Read Only: true

  The passphrase used to retrieve the server's private key from the keystore. This passphrase is assigned to the private key when it is generated. This value is derived from other settings on the channel and cannot be physically set.

• protocol(optional): string
  Default Value: t3

  The protocol this network channel should use for connections.

  Constraints

  • secure default : "t3s"
• proxyAddress(optional): string
  Default Value: oracle.doceng.json.BetterJsonNull@501d31f

  The IP address or DNS name of the HTTP proxy to use for outbound connections on this channel. The HTTP proxy must support the CONNECT tunneling command.

  This option is only effective when OutboundEnabled is set on the channel.

• proxyPort(optional): integer(int32)
  Default Value: 80

  The port of the HTTP proxy to use for outbound connections on this channel. The HTTP proxy must support the CONNECT tunneling command.

  This option is only effective when OutboundEnabled and ProxyHost are set on the channel.

• publicAddress(optional): string

  The IP address or DNS name representing the external identity of this network channel. A value of null indicates that the network channel's Listen Address is also its external address. If the Listen Address is null,the network channel obtains its external identity from the server's configuration.

  This is required for the configurations which need to cross a firewall doing Network Address Translation.

• publicPort(optional): integer(int32)

  The externally published listen port for this network channel. A value of -1 indicates that the network channel's Listen Port is also its public listen port. If the Listen Port is -1,the network channel obtains its public listen port from the server's configuration.

• resolveDNSName(optional): boolean
  Default Value: false

  Resolve the listen address to use for all T3 communication

• SSLv2HelloEnabled(optional): boolean

  Indicate whether SSLv2Hello is enabled in a network channel.

• tags(optional): array Items
  Title: Items

  Return all tags on this Configuration MBean

• timeoutConnectionWithPendingResponses(optional): boolean
  Default Value: false

  Determines if connections with pending responses are allowed to timeout. It defaults to false. If set to true, the connection will be timed out for this channel if it exceeds the idleConnectionTimeout value.

  Note: This setting only applies to IIOP connections.

• tunnelingClientPingSecs(optional): integer(int32)
  Minimum Value: 1

  The interval (in seconds) at which this network channel should ping an HTTP-tunneled client to see if its still alive. A value of -1 indicates that the network channel obtains this interval from the ServerTemplateMBean. (Requires you to enable tunneling for the network channel.)

• tunnelingClientTimeoutSecs(optional): integer(int32)
  Minimum Value: 1

  The amount of time (in seconds) after which this network channel considers a missing HTTP-tunneled client to be dead. A value of -1 indicates that the network channel obtains this timeout value from the ServerTemplateMBean. (Requires you to enable tunneling for the network channel.)

• tunnelingEnabled(optional): boolean
  Default Value: false

  Specifies whether tunneling via HTTP should be enabled for this network channel. This value is not inherited from the server's configuration.

• twoWaySSLEnabled(optional): boolean
  Default Value: false

  Specifies whether this network channel uses two way SSL.

  Constraints

  • doc only secure default : true
• type(optional): string
  Read Only: true

  Returns the type of the MBean.

  Constraints

  • unharvestable
• useFastSerialization(optional): boolean

  Specifies whether to use non-standard object serialization for performance. This option works in different ways for different protocols. In particular under IIOP this option uses Java serialization rather than RMI-IIOP serialization. In general using non-standard serialization is not suitable for interop scenarios and may imply some feature loss.

{
    "type":"object",
    "properties":{
        "SSLv2HelloEnabled":{
            "type":"boolean",
            "description":"<p>Indicate whether SSLv2Hello is enabled in a network channel.</p>"
        },
        "acceptBacklog":{
            "minimum":0,
            "type":"integer",
            "format":"int32",
            "description":"<p>The number of backlogged, new TCP connection requests that this network channel allows. A value of <code>-1</code> indicates that the network channel obtains its backlog configuration from the server's configuration.</p>"
        },
        "allowUnencryptedNullCipher":{
            "type":"boolean",
            "description":"<p>Test if the AllowUnEncryptedNullCipher is enabled</p><p>see <code>setAllowUnencryptedNullCipher(boolean enable)</code> for the NullCipher feature.</p>"
        },
        "channelIdentityCustomized":{
            "default":false,
            "type":"boolean",
            "description":"<p>Whether or not the channel's custom identity should be used. This setting only has an effect if the server is using a customized keystore. By default the channel's identity is inherited from the server's identity.</p>"
        },
        "channelWeight":{
            "default":50,
            "minimum":1,
            "maximum":100,
            "type":"integer",
            "format":"int32",
            "description":"<p>A weight to give this channel when creating server-to-server connections.</p>"
        },
        "ciphersuites":{
            "title":"Items",
            "type":"array",
            "items":{
                "type":"string",
                "description":""
            },
            "description":"<p>Indicates the cipher suites being used on a particular WebLogic Server channel.</p><p>The strongest negotiated cipher suite is chosen during the SSL handshake. The set of cipher suites used by default by JSEE depends on the specific JDK version with which WebLogic Server is configured.</p><p>For a list of possible values, see <a href=\"http://www.oracle.com/pls/topic/lookup?ctx=wls14110&id=SECMG502\">Cipher Suites</a></p>"
        },
        "clientCertificateEnforced":{
            "x-weblogic-docOnlySecureDefault":true,
            "default":false,
            "type":"boolean",
            "description":"<p>Specifies whether clients must present digital certificates from a trusted certificate authority to WebLogic Server on this channel.</p><p><h5>Constraints</h5></p><ul><li>doc only secure default : true</li></ul>"
        },
        "clientInitSecureRenegotiationAccepted":{
            "default":false,
            "type":"boolean",
            "description":"<p>Indicate whether TLS client initiated secure renegotiation is accepted.</p>"
        },
        "clusterAddress":{
            "type":"string",
            "description":"<p>The address this network channel uses to generate EJB handles and failover addresses for use in a cluster. This value is determined according to the following order of precedence:</p><ol><li><p>If the cluster address is specified via the NAPMBean, then that value is used</p></li><li><p>If this value is not specified, the value of PublicAddress is used.</p></li><li><p>If PublicAddress is not set, this value is derive from the ClusterAddress attribute of the ClusterMbean.</p></li><li><p>If ClusterMbean.clusterAddress is not set, this value is derive from the listen address of the NAPMbean.</p></li></ol>"
        },
        "completeMessageTimeout":{
            "minimum":0,
            "maximum":480,
            "type":"integer",
            "format":"int32",
            "description":"<p>The maximum amount of time this network channel waits for a complete message to be received. A value of <code></code> disables network channel complete message timeout. A value of <code>-1</code> indicates that the network channel obtains this timeout value from the ServerTemplateMBean.</p><p>This timeout helps guard against denial of service attacks in which a caller indicates that they will be sending a message of a certain size which they never finish sending.</p>"
        },
        "connectTimeout":{
            "minimum":0,
            "maximum":240,
            "type":"integer",
            "format":"int32",
            "description":"<p>The amount of time that this network channel should wait to establish an outbound socket connection before timing out. A value of <code></code> disables network channel connect timeout.</p>"
        },
        "customIdentityKeyStoreFileName":{
            "type":"string",
            "description":"<p>The source of the identity keystore. For a JKS keystore, the source is the path and file name. For an Oracle Key Store Service (KSS) keystore, the source is the KSS URI.</p><p>If using a JKS keystore, the keystore path name must either be absolute or relative to where the server was booted.</p><p>If using a KSS keystore, the keystore URI must be of the form:</p><p><code>kss://system/<i>keystorename</i></code></p><p>where <code><i>keystorename</i></code> is the name of the keystore registered in KSS.</p><p>The value in this attribute is only used if <code>ServerMBean.KeyStores</code> is <code>CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST</code>, <code>CUSTOM_IDENTITY_AND_CUSTOM_TRUST</code> or <code>CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST</code></p>"
        },
        "customIdentityKeyStorePassPhrase":{
            "type":"string",
            "format":"password",
            "description":"<p>The encrypted custom identity keystore's passphrase. If empty or null, then the keystore will be opened without a passphrase.</p><p>This attribute is only used if <code>ServerMBean.KeyStores</code> is <code>CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST</code>, <code>CUSTOM_IDENTITY_AND_CUSTOM_TRUST</code> or <code>CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST</code></p><p>When you get the value of this attribute, WebLogic Server does the following:</p><ol><li><p>Retrieves the value of the <code>CustomIdentityKeyStorePassPhraseEncrypted</code> attribute.</p></li><li><p>Decrypts the value and returns the unencrypted password as a String.</p></li></ol><p>When you set the value of this attribute, WebLogic Server does the following:</p><ol><li><p>Encrypts the value.</p></li><li><p>Sets the value of the <code>CustomIdentityKeyStorePassPhraseEncrypted</code> attribute to the encrypted value.</p></li></ol><p>Using this attribute (<code>CustomIdentityKeyStorePassPhrase</code>) is a potential security risk because the String object (which contains the unencrypted password) remains in the JVM's memory until garbage collection removes it and the memory is reallocated. Depending on how memory is allocated in the JVM, a significant amount of time could pass before this unencrypted data is removed from memory.</p><p>Instead of using this attribute, use <code>CustomIdentityKeyStorePassPhraseEncrypted</code></p>"
        },
        "customIdentityKeyStoreType":{
            "type":"string",
            "description":"<p>The type of the keystore. Generally, this is <code>JKS</code>. If using the Oracle Key Store Service, this would be <code>KSS</code></p><p>If empty or null, then the JDK's default keystore type (specified in <code>java.security</code>) is used. The custom identity key store type is only used if <code>ServerMBean.KeyStores</code> is <code>CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST</code>, <code>CUSTOM_IDENTITY_AND_CUSTOM_TRUST</code> or <code>CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST</code></p>"
        },
        "customPrivateKeyAlias":{
            "type":"string",
            "description":"<p>The string alias used to store and retrieve the channel's private key in the keystore. This private key is associated with the server's digital certificate. A value of <code>null</code> indicates that the network channel uses the alias specified in the server's SSL configuration.</p>"
        },
        "customPrivateKeyPassPhrase":{
            "default":null,
            "type":"string",
            "format":"password",
            "description":"<p>The passphrase used to retrieve the server's private key from the keystore. This passphrase is assigned to the private key when it is generated. A value of <code>null</code> indicates that the network channel uses the pass phrase specified in the server's SSL configuration.</p>"
        },
        "dynamicallyCreated":{
            "readOnly":true,
            "default":false,
            "type":"boolean",
            "description":"<p>Return whether the MBean was created dynamically or is persisted to config.xml</p>"
        },
        "enabled":{
            "default":true,
            "type":"boolean",
            "description":"<p>Specifies whether this channel should be started.</p>"
        },
        "excludedCiphersuites":{
            "title":"Items",
            "type":"array",
            "items":{
                "type":"string",
                "description":""
            },
            "description":"<p>List of cipher suites not to be used by WebLogic Server.</p>"
        },
        "hostnameVerificationIgnored":{
            "type":"boolean",
            "description":"<p>Specifies whether to ignore the installed implementation of the <code>weblogic.security.SSL.HostnameVerifier</code> interface (when this server is acting as a client to another application server).</p>"
        },
        "hostnameVerifier":{
            "type":"string",
            "description":"<p>The name of the class that implements the <code>weblogic.security.SSL.HostnameVerifier</code> interface.</p><p>This class verifies whether the connection to the host with the hostname from URL should be allowed. The class is used to prevent man-in-the-middle attacks. The <code>weblogic.security.SSL.HostnameVerifier</code> has a <code>verify()</code> method that WebLogic Server calls on the client during the SSL handshake.</p>"
        },
        "httpEnabledForThisProtocol":{
            "default":true,
            "type":"boolean",
            "description":"<p>Specifies whether HTTP traffic should be allowed over this network channel.</p><p>HTTP is generally required by binary protocols for downloading stubs and other resources.</p>"
        },
        "id":{
            "readOnly":true,
            "type":"integer",
            "format":"int64",
            "description":"<p>Return the unique id of this MBean instance</p>"
        },
        "idleConnectionTimeout":{
            "minimum":0,
            "type":"integer",
            "format":"int32",
            "description":"<p>The maximum amount of time (in seconds) that a connection is allowed to be idle before it is closed by this network channel. A value of <code>-1</code> indicates that the network channel obtains this timeout value from the ServerTemplateMBean.</p><p>This timeout helps guard against server deadlock through too many open connections.</p>"
        },
        "inboundCertificateValidation":{
            "enum":[
                "BuiltinSSLValidationOnly",
                "BuiltinSSLValidationAndCertPathValidators"
            ],
            "type":"string",
            "description":"<p>Indicates the client certificate validation rules for inbound SSL.</p><p>This attribute only applies to ports and network channels using 2-way SSL.</p>"
        },
        "listenAddress":{
            "type":"string",
            "description":"<p>The IP address or DNS name this network channel uses to listen for incoming connections. A value of <code>null</code> indicates that the network channel should obtain this value from the server's configuration.</p>"
        },
        "listenPort":{
            "type":"integer",
            "format":"int32",
            "description":"<p>The default TCP port this network channel uses to listen for regular (non-SSL) incoming connections. A value of <code>-1</code> indicates that the network channel should obtain this value from the server's configuration.</p>"
        },
        "loginTimeoutMillis":{
            "minimum":0,
            "maximum":100000,
            "type":"integer",
            "format":"int32",
            "description":"<p>The amount of time that this network channel should wait for a connection before timing out. A value of <code></code> disables network channel login timeout. A value of <code>-1</code> indicates that the network channel obtains this timeout value from the server's configuration.</p>"
        },
        "maxBackoffBetweenFailures":{
            "minimum":0,
            "type":"integer",
            "format":"int32",
            "description":"<p>The maximum back off time between failures while accepting client connections. -1 implies that this value is inherited from the server.</p>"
        },
        "maxConnectedClients":{
            "default":2147483647,
            "type":"integer",
            "format":"int32",
            "description":"<p>The maximum number of clients that can be connected on this network channel.</p>"
        },
        "maxMessageSize":{
            "minimum":4096,
            "maximum":100000000,
            "type":"integer",
            "format":"int32",
            "description":"<p>The maximum message size allowable in a message header.</p><p>This maximum attempts to prevent a denial of service attack whereby a caller attempts to force the server to allocate more memory than is available thereby keeping the server from responding quickly to other requests.</p><p>A client can set this value using the <code>-Dweblogic.MaxMessageSize</code> property.</p>"
        },
        "minimumTLSProtocolVersion":{
            "type":"string",
            "description":"<p>Get the minimum SSL/TLS protocol version to be used in a network channel.</p>"
        },
        "name":{
            "readOnly":true,
            "default":"<unknown>",
            "type":"string",
            "description":"<p>The name of this network channel.</p>"
        },
        "notes":{
            "type":"string",
            "description":"<p>Optional information that you can include to describe this configuration.</p><p>WebLogic Server saves this note in the domain's configuration file (<code>config.xml</code>) as XML PCDATA. All left angle brackets (<) are converted to the XML entity <code>&lt;</code>. Carriage returns/line feeds are preserved.</p><p>Note: If you create or edit a note from the Administration Console, the Administration Console does not preserve carriage returns/line feeds.</p>"
        },
        "outboundCertificateValidation":{
            "enum":[
                "BuiltinSSLValidationOnly",
                "BuiltinSSLValidationAndCertPathValidators"
            ],
            "type":"string",
            "description":"<p>Indicates the server certificate validation rules for outbound SSL.</p><p>This attribute always applies to outbound SSL that is part of WebLogic Server (that is, an Administration Server talking to the Node Manager). It does not apply to application code in the server that is using outbound SSL unless the application code uses a <code>weblogic.security.SSL.ServerTrustManager</code> that is configured to use outbound SSL validation.</p>"
        },
        "outboundEnabled":{
            "type":"boolean",
            "description":"<p>Specifies whether new server-to-server connections may consider this network channel when initiating a connection. This is only relevant if the connection needs to be bound to the network channel's listen address. This will only work for binary protocols that support both outbound and inbound traffic.</p><p>When this feature is not enabled, connections are initiated using a local address selected by the underlying hardware.</p><p>The default is false.</p><p>Outbound channels are selected at runtime either by virtue of the fact of being the only outbound-enabled channel for the required protocol, or by name in <code>weblogic.jndi.Environment#setProviderChannel</code></p><p>The HTTP protocol is implicitly enabled for all the outbound channels, but you need to use the WLS client library (HTTP client) and set the channel on the connection. </p>"
        },
        "outboundPrivateKeyAlias":{
            "readOnly":true,
            "default":null,
            "type":"string",
            "description":"<p>The string alias used to store and retrieve the outbound private key in the keystore. This private key is associated with either a server or a client digital certificate. This attribute value is derived from other settings and cannot be physically set.</p><p>The returned value is determined as follows:</p><ul><li><p>If <code>isOutboundPrivateKeyEnabled</code> and <code>isChannelIdentityCustomized</code> return true, the value from <code>getCustomPrivateKeyAlias</code> is returned.</p></li><li><p> Otherwise, the value from <code>SSLMBean#getOutboundPrivateKeyAlias</code> is returned from the <code>ServerMBean</code> for the channel.</p></li></ul>"
        },
        "outboundPrivateKeyEnabled":{
            "x-weblogic-secureDefault":false,
            "type":"boolean",
            "description":"<p>Specifies whether the identity specified by getCustomPrivateKeyAlias should be used for outbound SSL connections on this channel. In normal circumstances the outbound identity is determined by the caller's environment.</p><p><h5>Constraints</h5></p><ul><li>secure default : false</li></ul>"
        },
        "outboundPrivateKeyPassPhrase":{
            "readOnly":true,
            "default":null,
            "type":"string",
            "description":"<p>The passphrase used to retrieve the outbound private key from the keystore. This passphrase is assigned to the private key when it is generated. This attribute value is derived from other settings and cannot be physically set.</p><p>The returned value is determined as follows:</p><ul><li><p>If <code>isOutboundPrivateKeyEnabled</code> and <code>isChannelIdentityCustomized</code> return true, the value from <code>getCustomPrivateKeyPassPhrase</code> is returned.</p></li><li><p> Otherwise, the value from <code>SSLMBean#getOutboundPrivateKeyPassPhrase</code> is returned from the <code>ServerMBean</code> for the channel.</p></li></ul>"
        },
        "privateKeyAlias":{
            "readOnly":true,
            "type":"string",
            "description":"<p>The string alias used to store and retrieve the channel's private key in the keystore. This private key is associated with the server's digital certificate. This value is derived from other settings on the channel and cannot be physically set.</p>"
        },
        "privateKeyPassPhrase":{
            "readOnly":true,
            "type":"string",
            "description":"<p>The passphrase used to retrieve the server's private key from the keystore. This passphrase is assigned to the private key when it is generated. This value is derived from other settings on the channel and cannot be physically set.</p>"
        },
        "protocol":{
            "x-weblogic-secureDefault":"t3s",
            "default":"t3",
            "type":"string",
            "description":"<p>The protocol this network channel should use for connections.</p><p><h5>Constraints</h5></p><ul><li>secure default : \"t3s\"</li></ul>"
        },
        "proxyAddress":{
            "default":null,
            "type":"string",
            "description":"<p>The IP address or DNS name of the HTTP proxy to use for outbound connections on this channel. The HTTP proxy must support the CONNECT tunneling command.</p><p>This option is only effective when OutboundEnabled is set on the channel.</p>"
        },
        "proxyPort":{
            "default":80,
            "type":"integer",
            "format":"int32",
            "description":"<p>The port of the HTTP proxy to use for outbound connections on this channel. The HTTP proxy must support the CONNECT tunneling command.</p><p>This option is only effective when OutboundEnabled and ProxyHost are set on the channel.</p>"
        },
        "publicAddress":{
            "type":"string",
            "description":"<p>The IP address or DNS name representing the external identity of this network channel. A value of <code>null</code> indicates that the network channel's Listen Address is also its external address. If the Listen Address is <code>null,</code>the network channel obtains its external identity from the server's configuration.</p><p>This is required for the configurations which need to cross a firewall doing Network Address Translation.</p>"
        },
        "publicPort":{
            "type":"integer",
            "format":"int32",
            "description":"<p>The externally published listen port for this network channel. A value of <code>-1</code> indicates that the network channel's Listen Port is also its public listen port. If the Listen Port is <code>-1,</code>the network channel obtains its public listen port from the server's configuration.</p>"
        },
        "resolveDNSName":{
            "default":false,
            "type":"boolean",
            "description":"<p>Resolve the listen address to use for all T3 communication</p>"
        },
        "tags":{
            "title":"Items",
            "type":"array",
            "items":{
                "type":"string",
                "description":""
            },
            "description":"<p>Return all tags on this Configuration MBean</p>"
        },
        "timeoutConnectionWithPendingResponses":{
            "default":false,
            "type":"boolean",
            "description":"<p>Determines if connections with pending responses are allowed to timeout. It defaults to false. If set to true, the connection will be timed out for this channel if it exceeds the idleConnectionTimeout value.</p><p>Note: This setting only applies to IIOP connections.</p>"
        },
        "tunnelingClientPingSecs":{
            "minimum":1,
            "type":"integer",
            "format":"int32",
            "description":"<p>The interval (in seconds) at which this network channel should ping an HTTP-tunneled client to see if its still alive. A value of <code>-1</code> indicates that the network channel obtains this interval from the ServerTemplateMBean. (Requires you to enable tunneling for the network channel.)</p>"
        },
        "tunnelingClientTimeoutSecs":{
            "minimum":1,
            "type":"integer",
            "format":"int32",
            "description":"<p>The amount of time (in seconds) after which this network channel considers a missing HTTP-tunneled client to be dead. A value of <code>-1</code> indicates that the network channel obtains this timeout value from the ServerTemplateMBean. (Requires you to enable tunneling for the network channel.)</p>"
        },
        "tunnelingEnabled":{
            "default":false,
            "type":"boolean",
            "description":"<p>Specifies whether tunneling via HTTP should be enabled for this network channel. This value is not inherited from the server's configuration.</p>"
        },
        "twoWaySSLEnabled":{
            "x-weblogic-docOnlySecureDefault":true,
            "default":false,
            "type":"boolean",
            "description":"<p>Specifies whether this network channel uses two way SSL.</p><p><h5>Constraints</h5></p><ul><li>doc only secure default : true</li></ul>"
        },
        "type":{
            "readOnly":true,
            "x-weblogic-unharvestable":true,
            "type":"string",
            "description":"<p>Returns the type of the MBean.</p><p><h5>Constraints</h5></p><ul><li>unharvestable</li></ul>"
        },
        "useFastSerialization":{
            "type":"boolean",
            "description":"<p>Specifies whether to use non-standard object serialization for performance. This option works in different ways for different protocols. In particular under IIOP this option uses Java serialization rather than RMI-IIOP serialization. In general using non-standard serialization is not suitable for interop scenarios and may imply some feature loss.</p>"
        }
    },
    "description":""
}

Nested Schema : Items

Type: array

Title: Items

Indicates the cipher suites being used on a particular WebLogic Server channel.

The strongest negotiated cipher suite is chosen during the SSL handshake. The set of cipher suites used by default by JSEE depends on the specific JDK version with which WebLogic Server is configured.

For a list of possible values, see Cipher Suites

Show Source

• Array of: string

{
    "title":"Items",
    "type":"array",
    "items":{
        "type":"string",
        "description":""
    },
    "description":"<p>Indicates the cipher suites being used on a particular WebLogic Server channel.</p><p>The strongest negotiated cipher suite is chosen during the SSL handshake. The set of cipher suites used by default by JSEE depends on the specific JDK version with which WebLogic Server is configured.</p><p>For a list of possible values, see <a href=\"http://www.oracle.com/pls/topic/lookup?ctx=wls14110&id=SECMG502\">Cipher Suites</a></p>"
}

Nested Schema : Items

Type: array

Title: Items

List of cipher suites not to be used by WebLogic Server.

Show Source

• Array of: string

{
    "title":"Items",
    "type":"array",
    "items":{
        "type":"string",
        "description":""
    },
    "description":"<p>List of cipher suites not to be used by WebLogic Server.</p>"
}

Nested Schema : Items

Type: array

Title: Items

Return all tags on this Configuration MBean

Show Source

• Array of: string

{
    "title":"Items",
    "type":"array",
    "items":{
        "type":"string",
        "description":""
    },
    "description":"<p>Return all tags on this Configuration MBean</p>"
}

Security

• Admin: basic
  Type: basic

  Description: A user in the Admin security role.

Back to Top

Response

200 Response

Back to Top