OCSP check is performed on Weblogic Server's own certificates (Doc ID 2163464.1)

Last updated on AUGUST 03, 2017

Applies to:

Oracle WebLogic Server - Version 12.1.3.0.0 and later
Information in this document applies to any platform.

Symptoms

 OCSP check is performed on Weblogic Server's own certificates in the following scenario :

- HTTP port is disabled on Admin and the managed Servers.

- Managed Server connects to Admin over t3s URL and has two-way SSL enabled.

From the logs we see the following (OCSP check is performed every minute):

<Jul 13, 2016 5:15:31 AM EDT> <Debug> <CertRevocCheck> <BEA-000000> <The revocation status of certificate CN=Valid-cert, OU=Weblogic, O=Oracle US, L=some-city, ST=some-state, C=US is:
Status=NOT REVOKED
Source=OCSP
Subject="CN=Valid-cert,OU=Weblogic,O=Oracle US,L=some-city,ST=some-state,C=US"
Issuer="1.2.840.113549.1.9.1=#161a70756e656574682e7072616b617368406f7261636c652e636f6d,CN=Internal-CA,OU=Wls,O=Oracle,L=Bangalore,ST=Karnataka,C=IN"
SerialNumber=1
StatusValid=Wed 13 Jul 2016 05:15:31.000 -0400
StatusExpires=null
NonceIgnored=false
ProducedAt=Wed 13 Jul 2016 05:15:31.000 -0400
RevocationTime=null
Flags=0
ReasonCode=null

 

<Jul 13, 2016 5:16:31 AM EDT> <Debug> <CertRevocCheck> <BEA-000000> <The revocation status of certificate CN=Valid-cert, OU=Weblogic, O=Oracle US, L=some-city, ST=some-state, C=US is:
Status=NOT REVOKED
Source=OCSP
Subject="CN=Valid-cert,OU=Weblogic,O=Oracle US,L=some-city,ST=some-state,C=US"
Issuer="1.2.840.113549.1.9.1=#161a70756e656574682e7072616b617368406f7261636c652e636f6d,CN=Internal-CA,OU=Wls,O=Oracle,L=Bangalore,ST=Karnataka,C=IN"
SerialNumber=1
StatusValid=Wed 13 Jul 2016 05:15:31.000 -0400
StatusExpires=null
NonceIgnored=false
ProducedAt=Wed 13 Jul 2016 05:15:31.000 -0400
RevocationTime=null
Flags=0
ReasonCode=null

 

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms