My Oracle Support Banner

How to Develop Custom Hostname Verifier for Subject Alternative Name (SAN) Certificates (Doc ID 1311673.1)

Last updated on JANUARY 05, 2024

Applies to:

Oracle WebLogic Server - Version 10.3.6 to 10.3.6
Oracle WebLogic Server - Version 10.3.3 to 10.3.5
Information in this document applies to any platform.


Goal

This document describes how to develop custom hostname verifier Subject Alternative Name (SAN) Certificates in WebLogic. This document only applies for WebLogic versions 10.3.3 till 10.3.5. Support for SAN (Subject Alternative Name) exists from Weblogic 10.3.6 & above. So there is no need to use Custom Hostname Verifier for Weblogic 10.3.6 & above. Refer to below MOS Note which has information on Support for SAN for WebLogic 10.3.6 and above.

<Note 1075505.1>: Support for SAN (Subject Alternative Name) for WebLogic Server SSL Certificates

For Weblogic versions 10.3.3 till 10.3.5, By default, the WebLogic Hostname Verifier class does not do hostname verification for SAN certificates.

By default, the WebLogic Hostname Verifier class does not do hostname verification for SAN certificates.

Note:

If you have more number of servers in your environment you can use single SAN certificate for all the servers instead of requesting seperate certificates for each and every machine with <CN> name.

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.