Free Trial
Contact Us

Knowledge Base

Knowledge BaseCertificate Installation

How to Install and Bind SSL Certificate on Oracle WebLogic Server 15.1.1? 

Updated on March 27, 2026

How to Install and Bind an SSL Certificate on Oracle WebLogic Server 15.1.1? 

Overview 

This guide provides a step-by-step process to generate a CSR, install a CA‑issued SSL certificate, and bind it to the WebLogic AdminServer using WebLogic Remote Console 2.4.19. This ensures secure HTTPS access to the AdminServer. 

Prerequisites 

Before you begin, ensure you have the following: 

  • Oracle WebLogic Server 15.1.1 installed and running 

  • WebLogic Remote Console 2.4.19 connected over HTTP (port 7001) 

  • AdminServer running successfully 

  • Java keytool and OpenSSL available on the WebLogic host 

Step 1: Create Keystore Directory 

mkdir -p /home/weblogic/domains/lab_domain/keystores 

Step 2: Generate Keypair and CSR 

keytool -genkeypair -alias weblogic_ssl -keyalg RSA -keysize 2048 \ 
-keystore identity.jks -storetype JKS \ 
-dname "CN=your.fqdn.example, OU=IT, O=Company, L=City, ST=State, C=US" \ 
-ext SAN=dns:your.fqdn.example,ip:SERVER_IP 
 
keytool -certreq -alias weblogic_ssl -keystore identity.jks -file weblogic.csr 

Step 3: Submit CSR to Public CA 

Submit the file weblogic.csr to your public Certificate Authority and request a TLS server certificate. 

Step 4: Import CA Certificates 

Import certificates in the following order: 
 
1. Root CA 
keytool -importcert -trustcacerts -alias root_ca -file root.crt -keystore identity.jks 
 
2. Intermediate CA 
keytool -importcert -trustcacerts -alias intermediate_ca -file intermediate.crt -keystore identity.jks 
 
3. Server Certificate 
keytool -importcert -alias weblogic_ssl -file server.crt -keystore identity.jks 

Step 5: Verify Keystore 

keytool -list -v -keystore identity.jks 
 
Ensure alias weblogic_ssl is of type PrivateKeyEntry and contains a full certificate chain. 

Step 6: Configure Keystores in WebLogic Remote Console 

  • Navigate to: Edit Tree → Environment → Servers → AdminServer → Security → Keystores 

  • Keystores: Custom Identity and Custom Trust 

  • Custom Identity Key Store File Name/home/weblogic/domains/lab_domain/keystores/identity.jks 

  • Custom Identity Key Store Type: JKS 

  • Custom Identity Key Store Pass Phrase: ******** 

  • Custom Trust Key Store File Name/home/weblogic/domains/lab_domain/keystores/identity.jks 

  • Custom Trust Key Store Type: JKS 

  • Custom Trust Key Store Pass Phrases: ******** 

  • Click Save. 

 

Step 7: Configure SSL Alias 

Navigate to: Edit Tree → Environment → Servers → AdminServer → Security → SSL 
 
• Server Private Key Alias: weblogic_ssl 
• Server Private Key Pass Phrase: key password 
Click Save. 

 

 

Step 8: Enable HTTPS Port 

Navigate to: AdminServer → General 
Enable 'SSL Listen Port Enabled' and set port to 7002. 
Click Save. 

 

Step 9: Commit and Restart 

• Open Shopping Cart → Commit Changes 
• Restart AdminServer using startWebLogic.sh 

 

Step 10: Verification 

Access https://your.fqdn.example:7002 and verify the certificate chain is trusted. 

Need help?

Need help making a purchase? Contact us today to get your certificate issued right away.

Live chat

Click the button below or click "Chat with an Expert" to start chatting with us now!

Start Chat

Call us today

United States
+1 888 266 6361
France
+33 3 66 72 95 95
Italy
+39 02 4792 1708
Spain
+34 900 838 451
Germany
+49 800 1002328
International
+1 914 732 844

Resources