Javascript Menu by Deluxe-Menu.com
Provider of 128 bit ssl
Network Security
 

BEA Weblogic 5.1

     CSR Generation Instructions
 
 

 
BEA Weblogic 5.1 Server
(CSR Generation Procedures)

You must submit your request in a particular format called a Certificate Signing Request (CSR). WebLogic Server includes a Certificate Request Generator servlet that creates a CSR. The Certificate Request Generator servlet collects information from you and generates a private key file and a certificate request file. You must then submit the CSR. Before you can use the Certificate Request Generator servlet, WebLogic Server must be installed and running.

What your CSR will look like when your finished.

-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST-----
When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.
-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----
Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.

Step One: Start the Certificate Request Generator servlet (certificate.war). The .war file is automatically installed when you start WebLogic Server. In a Web browser, enter the URL for the Certificate Request Generator servlet as follows:

https://hostname:port/Certificate

hostname is the DNS name of the machine running WebLogic Server. port is the number of the port at which WebLogic Server listens for SSL connections.

For example, if WebLogic Server is running on a machine named ebizid and it is configured to listen for SSL communications at the default port 7002 to run the Certificate Request Generator servlet, you must enter the following URL in your Web browser:

https://ebizid:7002/certificate

The Certificate Request Generator servlet loads a form in your web browser. Complete the form displayed in your browser.

Country Name (2 letter code) [IE; US] click here for a list of codes
State or Province Name (full name) [IE: Texas]
Locality Name (City) [IE: Dallas]
Organization Name (company) [IE: YourCompany Ltd]
Organizational Unit Name (eg, section) []: [IE: IT Department]
Common Name (Your Domain name) [IE: yourdomain.com or www.yourdomain.com or whatever.yourdomain.com (subdomain)]:
Email Address:

If you are ordering a Wildcard Certificate, the Common Name field must be in the format of:   * . yourdomain . com

Step Two: Click the Generate Request button. The Certificate Request Generator servlet displays messages informing you if any required fields are empty or if any fields contain invalid values. Click the Back button in your browser and correct any errors.

When all fields have been accepted, the Certificate Request Generator servlet generates the following files in the startup directory of your WebLogic Server:

mydomain_com-key.der-The private key file.
The name of this file should go into the Server Key File Name field on the SSL tab in the Administration Console.

mydomain_com-request.dem-The certificate request file, in binary format.

mydomain_com-request.pem-The CSR file that you submit..
It contains the same data as the .dem file but is encoded in ASCII so that you can copy it into email or paste it into a Web form.

Private Key Password If you don't not specify a password, you will get an unencyrpted RSA private key. If you specify a password, you will get a PKCS-8 encrypted private key. When using PKCS-8 encrypted private keys, you need to enable the Use Encrytped Keys field on the SSL tab of the Server window in the Administration Console.

Should you choose to enter and use a Private Key password, you will need to make sure that you save that password in a secure place. If you ever need to reinstall your certificate for any reason, you will be required to enter that password. If you forget the password and it is past 30 days from your purchase date, then you will be required to purchase a new certificate. An ounce of prevention will prevent this from happening.

Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.


 
 

 

 SSL | SSL Wildcard Certificates  | Secure Email Encryption | 128 Bit Encryption | SSL Authentication | Secure Server | SSL Index | PKI Services
© EBIZID™ Security Services 2001-2008