WebLogic Server StartUp Fails With Invalid Server AdminServer SSL Configuration
(Doc ID 2339522.1)
Last updated on JANUARY 18, 2019
Applies to:
Oracle WebLogic Server - Version 12.2.1.3.0 and laterInformation in this document applies to any platform.
Symptoms
On a WebLogic Server 12.2.1.3.0 version, the HTTP listen port is disabled and the AdminServer is configured to use only SSL ports.
AdminServer does not start and goes to FAILED state with below errors:
<Critical> <Security> <BEA-090173> <The servers trust keystore configuration (specified on the command line or in boot.properties) is incorrect.>
<Critical> <Security> <BEA-090174> <The trust keystore configuration specified on the command line or in boot.properties does not match the trust keystore configuration specified in config.xml.>
<Alert> <Security> <BEA-090717> <Invalid server AdminServer SSL configuration>
<Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: couldnot get server SSL identity
weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration
at weblogic.security.utils.SSLContextManager.fail(SSLContextManager.java:818)
at weblogic.security.utils.SSLContextManager.getServerSSLIdentity(SSLContextManager.java:731)
at weblogic.security.utils.SSLContextManager.createSSLContext(SSLContextManager.java:509)
at weblogic.security.utils.SSLContextManager.createServerSSLContext(SSLContextManager.java:476)
at weblogic.security.utils.SSLContextManager.getDefaultServerSSLContext(SSLContextManager.java:399)
at weblogic.security.utils.SSLContextManager.getDefaultSSLSocketFactory(SSLContextManager.java:227)
at weblogic.security.SSL.ServerSSLSocketFactory.<init>(ServerSSLSocketFactory.java:34)
at weblogic.security.SSL.ServerSSLSocketFactory.getDefault(ServerSSLSocketFactory.java:40)
...
...
....
....
<Alert> <Security> <BEA-090717> <Invalid server AdminServer SSL configuration>
<Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: couldnot get server SSL identity
weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration
....
....
<Error> <WebLogicServer> <BEA-000297> <Inconsistent security configuration, weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration>
<Emergency> <Security> <BEA-090034> <Not listening for SSL, weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration.>
Full error stack is as follows:
Changes
Changes have been made to setDomainEnv.sh JAVA_OPTIONS to include the following arguments:
-Dweblogic.security.TrustKeyStore=/u01/app/oracle/keystores/keystore.jks
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |