How to check weblogic server version

How to check weblogic server version


You can verify weblogic server version using any of the method described below - 


1) Check server log file for below entry

2) Use weblogic.version command

Go to your_domain/bin

run setDomain.[cmd][sh]

run "java weblogic.version"

3) Use -verbose to get subsystem information

4) Using weblogic.utils.Version command

java weblogic.utils.Versions

5) Check registry.xml file under your Oracle_HOME ( earlier BEA_HOME )

6) Using WLST

Go to wlst prompt

    Go to your_domain/bin

    Run ./setDomainEnv.[cmd][sh]

    java weblogic.WLST

    wls:/offline> version

    'WebLogic Server 10.3.5.0  Fri Apr 1 20:20:06 PDT 2011 1398638 '

7) If you have access to your admin console, then you would able to see there also 

8) Check .product.properties file under WL_HOME

   

    

Weblogic Server Download Location and Documentation

Weblogic Server Download Location and Documentation, Tutorial

You can download weblogic server from here 

http://www.oracle.com/technetwork/middleware/ias/downloads/wls-main-097127.html

Oracle All products Document/Tutorial link

http://www.oracle.com/technetwork/indexes/documentation/index.html

Weblogic Specific - Download & Read the documents from here 

http://www.oracle.com/technetwork/middleware/weblogic/documentation/index.html

Weblogic Server Tutorial 
Specific To Weblogic- 

Weblogic Server 12C ( 12.1.1 ) Release1

12C ( 12.1.1.0 ) - http://docs.oracle.com/cd/E24329_01/index.htm

Weblogic Server Release1 ( 11.1.1 )

10.3.6 ( 11.1.1.6 )                - http://docs.oracle.com/cd/E23943_01/wls.htm
10.3.5 ( 11.1.1.5 )                - http://download.oracle.com/docs/cd/E21764_01/wls.htm
10.3.4 ( 11.1.1.4 )                - http://docs.oracle.com/cd/E17904_01/wls.htm
10.3.3 ( 11.1.1.3 )                - http://docs.oracle.com/cd/E14571_01/wls.htm
10.3.2 ( 11.1.1.2 )                - http://docs.oracle.com/cd/E15523_01/wls.htm
10.3.1 ( 11.1.1.1 )                - http://docs.oracle.com/cd/E12839_01/wls.htm

 Weblogic 10g Release3 

10.3.0                - http://docs.oracle.com/cd/E12840_01/wls/docs103/sitemap.html

Others

Watch Videos & Demos Here

http://www.youtube.com/oracleweblogic

Discussion on issues

http://www.oracle.com/technetwork/middleware/weblogic/community/index.html

Download Weblogic sample applications from here

http://www.oracle.com/technetwork/indexes/samplecode/weblogic-sample-522121.html

Demos, White papers, Vidoes here

http://www.oracle.com/technetwork/middleware/weblogic/learnmore/index.html

Online Tutorials

http://apex.oracle.com/pls/apex/f?p=44785:2:14134064621537:FORCE_QUERY::2,CIR,RIR:P2_TAGS:WebLogic%20Server

Weblogic Server SSL, Keystore, Identity and Trust, Public and Private Keypair

Weblogic Server SSL, Keystore, Identity and Trust, Public and Private Key pair, CA ( Certificate Authority )

Basic Concepts Related With Weblogic Server SSL Configuration

SSL, secure your data over internet

SSL ( secure socket layer ) is all about the security of data transfer or exchange between applications over the internet, or you can say to secure your confidential data between your web browser and application you are going to connect  by preventing man in the middle attack ( means theft of your confidential data over the internet when you transfer or exchange data between web browser and application hosted on some server ). For example, if you are using any bank website over internet with your login credentials then you have to be make sure on you are passing login credentials on the respective bank website not on any fraudulent website also the other point will come to your  mind and also on which you have to make sure if your data is secure on travelling over the internet between your web browser till the desired application you are going to connect, for example the credentials you are passing on your online banking account reach from your system browser to the bank application hosted server.

So, the basic funda of SSL is to encrypt the data from your system browser till it reach to the respected application so that no can attack and stole your sensitive data over internet and even if stolen no one can able to read since it's encrypted. if you are using ssl enabled application then when you submitted your credentials then first those credential encrypted before transmitting over net, then transmitted and decrypted when reach to the application server. I would be going to discuss net how would we achieve all of this functionality.

Identity & Trust 

Two basic terms which deals on all above defined concepts or you first need to know if you are going to implement ssl are  - 

1. Identity

2. Trust

If you are going to configure ssl for you web or application server then it means you have to create and configure "Identity" and "Trust" for you application. Identity gives surety to the client that ok it's the actual identity or website you were trying to connect and "Trust" create the trust that ok it's fully trusted and your credentials are safe.

Keystore - Public & Private Keypairs

SSL is based on public key encryption, means the data encrypted at user browser level using public key before transmitting the data over internet and once encrypted data reached to the respective destination it's decrypted using only and only the corresponding private key.
   

"Keystore" or also you can say it "Identity" contain the public key, private key and self certificate. So, the first step for ssl configuration is create the "Keystore" or "Identity", it can be done using the keytool command shipped with your bundled java.

Private key is just like your private things which you need to be secure under you authority and access only, it exist at your web or application host level only and public key only distributed over users browser.

  

Stay tune for further update.......

 

Weblogic Server SSL Configuration : Self Signed Certificate Configuration

Weblogic Server SSL Configuration : Self Signed Certificate Configuration 


For concepts on self sign certificate and trusted certificate authority certificate please read my below post - 

http://weblogicserveradministration.blogspot.com/2012/11/weblogic-ssl-trusted-certificate.html


The basic concept of configuring the self sigh certificate is - 

1. Create public-private keypair OR you can say create identity OR you can say create keystore
2. Extract/export self sign certificate or say root certificate from above created    
     keystore/identity/public-private keypair
3. Create trust keystore by importing above exported root certificate
4. Configure weblogic for identity and trust

Note :- Before going a head for below steps make sure you have jdk/bin on your path variable and you are able to run keytool otherwise you run below commands under jdk/bin directory and later place created .jks files to necessary directory

Steps

1. Create identity keystore ( or public-private keypair)

keytool -genkey -alias alias123 -keyalg RSA -keypass weblogic123 -keystore identity.jks -storepass weblogic321 -validity 365 

  2. Since it's a self sign certificate so, Export root certificate from keystore

keytool -export -alias alias123 -file root.cer -keystore identity.jks -storepass weblogic321

3. Create trust keystore

keytool -import -alias alias123 -trustcacerts -file root.cer -keystore trust.jks -storepass weblogic321

Now you have identity.jks, trust.jks and root.cer

VERIFICATION

NOTE : - MAKE SURE TO RUN BELOW COMMAND INSIDE THE DIRECTORY WHERE YOU HAVE YOU .JKS AND .CER FILES OTHERWISE DEFINE COMPLETE PATH OF FILE ON BELOW COMMANDA EXPLICITELY

To List certificates inside identity keystore

keytool -list -v -keystore  identity.jks -storepass weblogic321

To list contents of trust keystore

keytool -list -v -keystore trust.jks -storepass weblogic321

To view exported root certificate

keytool -printcert -file root.cer

4. Weblogic Level Configuration

Login to admin console, click on server, then click on - 

4.1 keystore tab on right hand side, then for keystore: option select "custom identity and trust",   

       then enter identity and trust path with storepass you have used

4.2 SSL tab on right hand side, then enter alias value and keypass you have used

5. Now enable SSL from admin console

Go to admin console, select server, under configuration select ssl checkbox and enter the desired port on which port you want to run ssl connection, now bring down weblogic and start again

Now access admin console and your application as https instead of http

admin console -  https://host:ssl_port/console

Next

Configure Weblogic Node Manager SSL Configuration

1. If running Stop your node manager

2. update nodemanager.properties file for - 

2.1


KeyStores=CustomIdentityAndCustomTrust
CustomIdentityKeystoreType=jks
CustomIdentityKeyStoreFileName=C\:\\Oracle\\Middleware2\\jrockit_160_24_D1.1.2-4\\bin\\identity.jks
CustomIdentityKeyStorePassPhrase=weblogic321
CustomTrustKeystoreType=jks
CustomTrustKeyStoreFileName=C\:\\Oracle\\Middleware2\\jrockit_160_24_D1.1.2-4\\bin\\trust.jks
CustomTrustKeyStorePassPhrase=
CustomIdentityAlias=alias123
CustomIdentityPrivateKeyPassPhrase=weblogic123

Note : - Above contents from window, for unix/linux use proper path separator 

2.1  set secure listener to true 

SecureListener=true

2.3  update ListenAddress with proper host

like - ListenAddress=localhost

Since it's self sign certificate so this above step not really required but for safer side you can update

3. Since it's a self sign certificate so disable host name verification

Login to admin console
Go to server > select your server >Configuration>SSL
Click on advanced
select Hostname Verification as "NONE"
Save and activate changes.
Repeat above steps fore all servers in domain 

4. Disable host name verification for Node manager

Add below parameter to your node manager startup file, - 
unix/linux = startNodeManager.sh
window = startNodeManager.cmd

-Dweblogic.nodemanager.sslHostNameVerificationEnabled=false

Example - 

"%JAVA_HOME%\bin\java.exe" %JAVA_VM% %MEM_ARGS% %JAVA_OPTIONS% "-Dweblogic.nodemanager.sslHostNameVerificationEnabled=false" 
"-Dweblogic.nodemanager.sslHostNameVerificationEnabled=false" "-Djava.security.policy=%WL_HOME%\server\lib\weblogic.policy" "-Dweblogic.nodemanager.javaHome=%JAVA_HOME%" weblogic.NodeManager -v


5. Now change node manager "Type" as SSL from admin console

Login to admin console > select Machine option > select your configured machine > configuration tab > node manager sub tab > set "type" as SSL, save and activate changes

Start your node manager = make sure no error in node manager log file


you are done cheers!!!!

Weblogic SSL : Trusted certificate authority signed certificate vs. Self signed certificate

Weblogic SSL : Trusted certificate authority signed certificate ( third party signed ) vs. Self signed certificate


What is the difference between CA signed certificate and self signed certificate ?

If you build up or going to build any eCommerce website then, the first thing that will come to your mind is, security. How to make out website secure from the fraudulent and man in the middle attack. or you can say if you are going to access any ecommerce website with your confidential credentials then how could you know that you are accessing the trusted one website. so it's all about the identity, trust and security over the web.

So, certificate is a physical entity just like a file on your computer, which contains the identity of authority who is the actual owner of a website like name, address, host name for their website etc, and apart from that this certificate is signed by either owner of the website ( in this way it called self signed certificate ) or by some third party certificate authorities ( also called CA ) like verisign, thwate etc ( in this was it is called third party or trusted certificate authority signed certificates.

To understand this properly you have to study further on some more topics like SSL, keystores, public and private key, digital certificate, identity and trust etc. I will be publishing another blog about them very soon. 

So net net, the difference between a self signed and trusted third party signed certificate is, a self sign certificate is self signed by the owner ( or you can say by yourself if you are going to create it for your environment ) however a third party CA certificated is signed by the third party authorities which is the recommended for your production live environments.

So, certificate is all about the encryption of data exchanging between you and the trusted destination, like your browser and any secure website you are going to access, to make sure no one can attack in the middle to get your credentials. 

One thing that is exactly the same on both type of certificates is - Regardless of whether certificate is self signed or by third party,  Both certificate will encrypt the data between source ( your browser ) and destination ( any secure website you are going to use ). 

You may get a question on your mind then why to use  third party signed certificate by paying the money ? 

Ok, the main difference is, On a CA signed certificate, the website owner and details verified by the certificate authority and as a customer you can trust blindly on any CA signed secure website but self sign certificate is signed by the owner of website itself so you can't trust on that because it wasn't identified and trusted by you or anyone.  And another thing is, if you are using a self sign certificate then on every access of your website you or customer it will be flagged as potentially risk there and you will get a security window there because almost every browser check if the secure ( https ) certificate is trusted by any CA or not and if not you or customer will get security risk flag. So you are trying to access any website that is showing you a security risk flag then make sure to investigate everything properly before you make it as trusted.

So Net Net, On every access of a secure website trusted or signed by the trusted CA, your browser will first check if that certificate is issues by any certificate authority and valid or not, then it will start further chain of trust. However, in case of self sign certificate, your browser will not check if certificate is issued by CA or not and will prompt you a security risk flag popup.

So if you are the owner of a website and -  

If you are using a self sign certificate then to a customer who is going to access your website, you are going to say "Hey trust me, I am who I say I am", its up to the customers if they trust you and provide their secure information over your website like account details, passwords etc based on your words :) 

If you are going to use a trusted CA certificate then you can say to a customer who is going access your website that "hey this is my website and it is trusted by verisign ( or whoever trusted authority you have used ), Now customer has no hesitation providing their secure credentials over your website.

So, Net Net, you should not use self-signed certificates for professional use, as your visitors will not trust your web site to be safe. 

So, If you are going to do any business over a website or if your website need customers secure credentials then make sure to secure your website using trusted CA certificates instead of just self sign certificates.

So, self sign certificates basically used in your non prod testing environments where you have to test your application for secure https functionality before implementing on live production environment. 




Stay tune for more on weblogic server SSL server information and implementation.



Tags : weblogic self sign certificates, trusted certificate authority, weblogic ssl configuration, generate self sign certificate, ssl configuration in weblogic

Weblogic Server Basic Concepts For Beginners

Weblogic Server Basic Concepts For Beginners 


My this post is specifically for the dummies :), I mean to say the guys having little bit of knowledge or don't have knowledge of weblogic server and really want to study the basics of weblogic server or want to know from where to start to choose this as a technical carrier option.

What is Weblogic Server ? What is the difference between an application server or weblogic server and a web server ? 

Weblogic server is a java j2EE based application server like other application servers exist in the market are websphere, jboss, tomcat etc, java j2EE based means it's completely build on the latest java J2EE standards, and application server you can say a middleware component or software which hosts or runs your applications, middleware because it's exist at the mid layer between front end ( your browser like IE, firefox, chrome etc ) and backend database, like below 


FRONT END ( IE, CHROME ETC ) =====>  APPLICATION SERVER ( HOSTS/RUN YOUR APPLICATION ) =====> DATABASE

Above architecture means, browser will access your application hosted on application server, and application will contact back end database of rest of the configurations or database related operations.

Apart from application server functionality, it has the capability of a strong web server also. it mean you can used weblogic server as an application server as well as web server just like apache, iis etc.  

So in whole, as a application server you can deploy your java j2ee based applications on weblogic server to get lots of application server benefits and features as well as deploy web applications to use it as a web server also.

Difference between an application server and web server is, A Web server you can say is a computer program or software that serves content, such as Web pages ( static/dynamic ), using the Hypertext Transfer Protocol (HTTP), over the World Wide Web but an application server is much more than serving Static/Dynamic Web pages, It provides Infrastructure or features for large enterprise application like better performance tuning options, advance more secure security options, advance and latest technology supports, maintainability, scalability, high availability etc which a web server doesn't provides. 


From where to start 

Ok once you have knowledge of an application server and on what is weblogic server, you can read from here further.

The very initial thing just like other software's is Installation, BUT  before installation you need to make familiar yourself with few of the basic components, rest it's a sea, you can study, test and implement further but you need to make familiar yourself with below things first - 

1. Installation

BUT before installation make sure to clear your concept on at least below things -

Environment Variable -

1. ORACLE_HOME OR  MW_HOME ( middleware home ) ( earlier called BEA_HOME ) - 

This is the main installation directory for weblogic server, when you will run the installer it will prompt you enter this installation middleware directory ( default is root/Oracle/Middleware like in windows D:\Oracle\Middleware )

2. WL_HOME ( WEBLOGIC HOME or Weblogic Product Directory )

This is called weblogic product directory, it's created under your PRACLE_HOME with folder name according to your weblogic version like wlserver_10.3 for 10.3.x versions ( like D:\Oracle\Middleware\wlserver_10.3 )


Concepts - 

1. Jdk / Jrockit
       Read on what is jdk and jrockit

2. Weblogic Domain
       Read what is domain

3. Admin Server & Admin Console
       Read what is admin server and how to access admin console

4. Managed Server
       Read what is managed server

5. Cluster
       Read what is cluster and cluster benefits

6. Machine
       Read what is a machine

7. Node Manager
      Read what is node manager and benefits of node manager

8. Production and Development mode
      What is development mode and production mode ( NOT difference, you can read it later )

9. Start / Stop Admin Server, Managed Server, Node Manager
        Read how to start and stop admin server, managed server and node manager

Once you are familiar with the above concepts, further basic steps are - 

1. Do Weblogic Installation

After that do below exercise - 

[A] Exercise - Ist

1. Domain creation - In development mode ( Without Managed server, only with Admin server )
2. Start Admin Server
3. Access Admin Console
4. Create managed server from Admin Console


[B] Exercise - 2nd

1. Domain creation - In production mode with managed server, cluster, machine
2. create cluster, machine from console
3. Node Manager start / stop, configuration


Stay tune for further updates.....


Tag : weblogic server tutorial for beginners