A server template is a prototype server, allowing administrators to easily configure shared settings for homogenous servers.
This chapter describes how to monitor and configure server templates.
This chapter includes the following sections:
To monitor the status of all server templates configured in a domain:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain, such as:
Name
Cluster
Machine
Listen Port
Listen Address
For more information about these fields, see Configuration Options.
This section describes how to configure server templates. This section includes the following tasks:
Changes to your general settings for a template will apply to every server that references the template unless explicitly overridden.
To configure general settings for a sever template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select General Settings.
From the General Settings page, you can configure general features of this server template, such as:
Machine
Cluster
Listen Address
Listen Port Enabled
Listen Port
SSL Listen Port Enabled
SSL Listen Port
Client Cert Proxy Enabled
Java Compiler
Diagnostic Volume
For more information about these fields, see Configuration Options.
Optionally, expand Advanced to define advanced settings for this server template.
Click Save.
A WebLogic Server cluster is a group of servers that work together to provide a scalable and reliable application platform.
To configure cluster configuration settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Cluster.
From the Cluster page, you can define a cluster configuration for your server template, such as:
Replication Group
Preferred Secondary Group
Cluster Weight
Interface Address
Replication Ports
For more information about these fields, see Configuration Options.
Click Save.
To configure service settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Services.
From the Services page, you can set WebLogic service configuration settings, such as:
JMS
Default Store
Transaction Log
Messaging Bridge
XML Services
For more information about these fields, see Configuration Options.
Click Save.
Keystores ensure the secure storage and management of private keys and trusted certificate authorities (CAs). You can view and define various keystore configurations which help you manage the security of message transmissions.
To configure keystore settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Keystores.
To change your keystore configuration:
Click Change.
From the Keystores dropdown menu, select the keystore configuration you want to use.
Click Save.
From the Keystore page, you can define the keystore configuration settings for this server template, such as:
Identity settings
Trust settings
For more information about these fields, see Configuration Options.
Click Save.
You can view and define various Secure Sockets Layer (SSL) settings for a server template, which help you manage the security of message transmissions.
To configure SSL settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select SSL.
To change your identity and trust location:
Click Change.
From the Identity and Trust Locations dropdown menu, select the location you want to use.
Click Save.
From the SSL page, you can define the SSL configuration settings for this server template, such as:
Identity and Trust Locations
Private Key Location
Private Key Alias
Private Key Passphrase
Certificate Location
Trusted Certificate Authorities
For more information about these fields, see Configuration Options.
Optionally, expand Advanced to define advanced configuration settings for this server template.
Click Save.
You can configure a WebLogic Server instance to function as a producer or as a consumer of SAML assertions that can be used for the following:
Web single sign-on between online business partners
Exchange of identity information in Web services security
The general process of configuring Federation Services depends upon the version of SAML you are using. WebLogic Server supports both SAML 1.1 and SAML 2.0.
To configure WebLogic Server to serve as a SAML 1.1 federated partner:
To configure WebLogic Server to serve as a SAML 2.0 federated partner:
Before you begin
You must first configure a SAML Credential Mapper V2 security provider in the server's security realm.
You can configure a WebLogic Server instance to function as a SAML source site. A SAML source site is a site that provides an Intersite Transfer Service (ITS). A source site generates assertions that are conveyed to a destination site using one of the single sign-on profiles.
To configure a server as a SAML source site:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration.
Select Federation Services, then select SAML 1.1 Source Site.
Select the Source Site Enabled attribute to cause this server to act as a source for SAML assertions.
From the SAML 1.1 Source Site page, you can also define other configuration settings for this server, such as:
Source Site URL
Signing Key Alias
Intersite Transfer URIs
ITS Requires SSL
Assertion Retrieval URIs
ARS Requires SSL
ARS Requires Two-Way SSL Authentication
Assertion Store Class Name
Assertion Store Properties
For more information about these fields, see Configuration Options.
Click Save.
Before you begin
You must first configure a SAML Identity Asserter V2 security provider in the server's security realm.
You can configure a WebLogic Server instance to function as a SAML destination site. A destination site can receive SAML assertions and use them to authenticate local subjects.
To configure a server as a SAML destination site:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration.
Select Federation Services, then select SAML 1.1 Destination Site.
Select the Destination Site Enabled attribute to enable the Assertion Consumer Service.
From the SAML 1.1 Destination Site page, you can also define other desired configuration settings for this server, such as:
Assertion Consumer URIs
ACS Requires SSL
SSL Client Identity Alias
POST Recipient Check Enabled
POST One-Use Check Enabled
Used Assertion Cache Class Name
Used Assertion Cache Properties
For more information about these fields, see Configuration Options.
Click Save.
You can configure general SAML 2.0 services for a server. If you are configuring SAML 2.0 Web single sign-on services with your federated partners, the site information you configure is published in a metadata file that you send to your federated partners.
To configure the general SAML 2.0 properties of this server:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
In the Server Templates table, select the name of the server you want to configure.
Select Configuration.
Select Federation Services, then select SAML 2.0 General.
Select the Replicated Cache Enabled attribute to use the persistent cache for storing SAML 2.0 artifacts.
This option is required if you are configuring SAML 2.0 services in two or more WebLogic Server instances in your domain. For example, if you are configuring SAML 2.0 services in a cluster, you must enable this option in each Managed Server instance individually.
Note:
If you are configuring SAML 2.0 services in two or more WebLogic Server instances in your domain, you must configure the RDBMS security store. The embedded LDAP server is not supported in these configurations.
In the Site Info section, enter the following information about your SAML 2.0 site:
Contact person details
Your organization's name and URL
The Published Site URL, which is the top-level URL for your site's SAML 2.0 service endpoints. This URL must be appended with the string /saml2
, which will be automatically combined with constant suffixes to create full endpoint URLs.
In the Bindings section, enter the common binding information to be used by this SAML 2.0 server instance.
If you do not specify a Transport Layer Security key alias and passphrase, the server's configured SSL private key alias and passphrase from the server's SSL configuration is used for the TLS alias by default.
If the Artifact binding is enabled for any SAML 2.0 security provider hosted on this server instance, define the Artifact Resolution Service settings in the Artifact Resolution Service section.
In the Single Sign-on section, enter the keystore alias and passphrase for the key to be used for signing documents sent to federated partners.
If you do not specify a single sign-on signing key alias and passphrase, the server's configured SSL private key alias and passphrase from the server's SSL configuration is used by default.
Click Save.
For more information, see Configuration Options.
After you finish
After you have configured this server's general SAML 2.0 services, select the SAML 2.0 Identity Provider page or the SAML 2.0 Service Provider page to configure this server as an Identity Provider or Service Provider, respectively. For more information, see Configure SAML 2.0 Identity Provider services and Configure SAML 2.0 Service Provider services.
You can configure a server in the role of SAML 2.0 Identity Provider. A SAML 2.0 Identity Provider creates, maintains, and manages identity information for principals, and provides principal authentication to other Service Provider partners within a federation by generating SAML 2.0 assertions for those partners.
To configure a server as a SAML 2.0 Identity Provider:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration.
Select Federation Services, then select SAML 2.0 Identity Provider.
Select the Enabled attribute to activate this server's SAML 2.0 services in the role of Identity Provider.
Select Only Accept Signed Authentication Requests if you want to ensure that any incoming authentication requests must be signed.
If you are using a custom login Web application to which unauthenticated requests are directed:
Select Login Customized.
Enter the URL of the custom login Web application.
Enter the login return query parameter
The query parameter is a unique string that the SAML 2.0 services uses to hold the login return URL for the local single sign-on service servlet. (Note that, as an alternative, the login return URL can also be specified in the login Web application.)
Set the SAML bindings for which this server is enabled, and select the preferred binding type.
Click Save.
For more information, see Configuration Options.
After you finish
Coordinate with your federated partners to ensure that the SAML bindings you have enabled for this SAML authority, as well as your requirements for signed documents, are compatible with your partners.
You can configure a WebLogic Server instances as a SAML 2.0 Service Provider. A Service Provider is a SAML authority that can receive SAML assertions and extract identity information from those assertions. The identity information can then be mapped to local Subjects, and optionally groups as well, that can be authenticated.
To configure a server as a SAML 2.0 Service Provider:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration.
Select Federation Services, then select SAML 2.0 Service Provider.
Select the Enabled attribute to SAML 2.0 services in this server in the role of Identity Provider.
Set the configuration options for the local SAML 2.0 Service Provider services as appropriate. Note the following:
Choose options for Always Sign Authentication Requests and Only Accept Signed Assertions as desired and in a manner that is coordinated with your federated partners so that authentication requests and assertions are accepted.
Communicate the SAML bindings settings for this server with your federated partners to ensure compatibility.
Click Save.
For more information, see Configuration Options.
After you finish
Coordinate with your federated partners to ensure that the SAML bindings you have enabled for this SAML authority, as well as your requirements for signed documents, are compatible with your partners.
To configure deployment settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Deployment.
From the Deployment page, you can define the default deployment staging configuration for a server template, such as:
Staging Mode
Staging Directory Name
Upload Directory Name
For more information about these fields, see Configuration Options.
Click Save.
To configure tuning settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Tuning.
From the Tuning page, you can define tuning performance and functionality settings of this server template, such as:
Enable Native IO
JavaSocketMuxer Socket Readers
Enable Gathered Writes
Enable Scattered Reads
Maximum Open Sockets
Stuck Thread Max Time
Stuck Thread Timer Interval
Accept Backlog
Login Timeout
SSL Login Timeout
Reverse DNS Allowed
For more information about these fields, see Configuration Options.
Optionally, expand Advanced to define advanced settings for this server template.
Click Save.
To configure overload settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Overload.
From the Overload page, you can configure how WebLogic Server should react in the case of an overload or failure condition, including settings such as:
Shared Capacity for Work Managers
Failure Action
Panic Action
Free Memory Percent High Threshold
Free Memory Percent Low Threshold
Max Stuck Thread Time
Stuck Thread Count
For more information about these fields, see Configuration Options.
Click Save.
WebLogic Server provides a self-health monitoring capability to improve the reliability and availability of servers in a WebLogic Server domain. Selected subsystems within each server monitor their health status based on criteria specific to the subsystem.
To configure health monitoring settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Health Monitoring.
From the Health Monitoring page, you can configure the frequency of a server's automatic health checks and the frequency with which the Node Manager application (optional) checks the server's health state by defining settings such as:
Health Check Interval
Auto Kill if Failed
Auto Restart
Max Restarts Within Interval
Restart Delay Seconds
For more information about these fields, see Configuration Options.
Click Save.
Node Manager is a WebLogic Server utility that you can use to start, suspend, shut down, and restart servers in normal or unexpected conditions.
To configure startup settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Server Start.
From the Server Start page, you can configure the startup settings that Node Manager will use to start this server on a remote machine, including settings such as:
Java Home
Java Vendor
BEA Home
Root Directory
Class Path
Arguments
Security Policy File
User Name
Password
Confirm Password
For more information about these fields, see Configuration Options.
Click Save.
This section describes how to configure Web services for a server template.
This section includes the following tasks:
To configure messaging buffering settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration.
Select Web Services, then select Buffering.
From the Buffering page, you can define message buffering settings for Web services on a server template, such as:
Retry Count
Retry Delay
Request Queue Enabled
Request Queue Connection Factory JNDI Name
Request Queue Transaction Enabled
Response Queue Enabled
Response Queue Connection Factory JNDI Name
Response Queue Transaction Enabled
For more information about these fields, see Configuration Options.
Click Save.
Web service reliable messaging is a framework that enables an application running on one application server to reliably invoke a Web service running on another application server, assuming that both servers implement the WS-Reliable Messaging specification. Reliable is defined as the ability to guarantee message delivery between the two Web services.
To configure reliable messaging settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration.
Select Web Services, then select Reliable Message.
From the Reliable Messaging page, you can customize reliable messaging configuration settings on the Web service endpoint, such as:
Base Retransmission Interval
Enable Retransmission Exponential Backoff
Non-buffered Source
Non-buffered Destination
Acknowledgement Interval
Inactivity Timeout
Sequence Expiration
For more information about these fields, see Configuration Options.
Click Save.
A logical store is a named unit of storage that provides the business configuration requirements and connects the Web service to the physical and buffering queue.
To view logical stores configured for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to view.
Select Configuration.
Select Web Services, then select Logical Stores.
From the Logical Stores page, you can view information about each logical store that has been configured in the current WebLogic domain, such as:
Name
Persistence Strategy
Request Buffering Queue JNDI Name
Response Buffering Queue JNDI Name
Default
For more information about these fields, see Configuration Options.
Optionally, select View to access the following table options:
Columns: add or remove the columns displayed in the table
Detach: detach the table (viewing option)
Sort: sort the columns in ascending or descending order
Reorder: change the order of the columns displayed
Query by Example
To configure Coherence settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Configuration, then select Coherence.
From the Coherence page, you can select the Coherence cluster you want to use in this server template.
For more information, see Configuration Options.
Click Save.
This section describes how to configure server template protocols.
This section includes the following tasks:
To configure general protocol settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Protocols, then select General Settings.
From the General Settings page, you can define connections settings for various communication protocols that this server template uses, such as:
Complete Message Timeout
Idle Connection Timeout
Enable Tunneling
Tunneling Client Ping
Tunneling Client Timeout
Maximum Message Size
For more information about these fields, see Configuration Options.
Click Save.
To configure HTTP protocol settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Protocols, then select HTTP.
From the HTTP page, you can define the HTTP settings for this server template, such as:
Default WebApp Context Root
Post Timeout
Max Post Size
Enable Keepalives
Duration
HTTPS Duration
Frontend Host
Frontend HTTP Port
Frontend HTTPS Port
WAP Enabled
Remote Address Override
Send Server Header
Accept Context Path in Get Real Path
HTTP Max Message Size
Enable Tunneling
Tunneling Client Ping
Tunneling Client Timeout
For more information about these fields, see Configuration Options.
Click Save.
To configure Java to COM (jCOM) protocol settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Protocols, then select jCOM.
From the jCOM page, you can define jCOM protocol settings for this server template, such as:
Enable COM
NT Authentication Host
Enable Native Mode
Verbose Logging Enabled
Enable Memory Logging
Prefetch Enumeration
Apartment Threaded
For more information about these fields, see Configuration Options.
Click Save.
To configure Internet Inter-ORB Protocol (IIOOP) settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Protocols, then select IIOP.
From the IIOP page, you can define IIOP protocol settings for this server template, such as:
Enable COM
For more information, see Configuration Options.
Optionally, expand Advanced to define advanced configuration settings for this server template.
Click Save.
To monitor network channel protocol settings for a server template:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
The Server Templates table displays information about each server template that has been configured in the current WebLogic Server domain.
In the Server Templates table, select the name of the server template you want to configure.
Select Protocols, then select Channels.
The Channels table displays information about each network channel that has been configured for this server template, such as:
Name
Protocol
Enabled
Listen Address
Listen Port
Public Address
Public Port
For more information about these fields, see Configuration Options.
Click Save.
To configure network channel protocol settings for a server instance:
From the WebLogic Domain dropdown menu, select Environment, then select Server Templates.
In the Server Templates table, select the name of the server template you want to configure.
Select Protocols, then select Channels.
In the Channels table, select the name of the channel you want to configure.
Select Configuration.
From the General page, you can define general configuration settings for the network channel, such as:
Name
Protocol
Listen Port
Listen Address
External Listen Address
External Listen Port
Enabled
For more information about these fields, see Configuration Options.
Optionally, expand Advanced to define advanced configuration settings for this network channel.
Click Save.
From the Security page, you can define security configuration options for the network channel, such as:
Two Way SSL Enabled
Client Certificate Enforced
For more information about these fields, see Configuration Options.
Optionally, expand Advanced to define advanced configuration settings for this network channel.
Click Save.