WebLogic Server StartUp Fails With Invalid Server AdminServer SSL Configuration
Last updated on DECEMBER 15, 2017
Applies to:
Oracle WebLogic Server - Version 12.2.1.3.0 and laterInformation in this document applies to any platform.
Symptoms
On a WebLogic Server 12.2.1.3.0 version, the HTTP listen port is disabled and the AdminServer is configured to use only SSL ports.
AdminServer does not start and goes to FAILED state with below errors:
<Critical> <Security> <BEA-090173> <The servers trust keystore configuration (specified on the command line or in boot.properties) is incorrect.>
<Critical> <Security> <BEA-090174> <The trust keystore configuration specified on the command line or in boot.properties does not match the trust keystore configuration specified in config.xml.>
<Alert> <Security> <BEA-090717> <Invalid server AdminServer SSL configuration>
<Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: couldnot get server SSL identity
weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration
at weblogic.security.utils.SSLContextManager.fail(SSLContextManager.java:818)
at weblogic.security.utils.SSLContextManager.getServerSSLIdentity(SSLContextManager.java:731)
at weblogic.security.utils.SSLContextManager.createSSLContext(SSLContextManager.java:509)
at weblogic.security.utils.SSLContextManager.createServerSSLContext(SSLContextManager.java:476)
at weblogic.security.utils.SSLContextManager.getDefaultServerSSLContext(SSLContextManager.java:399)
at weblogic.security.utils.SSLContextManager.getDefaultSSLSocketFactory(SSLContextManager.java:227)
at weblogic.security.SSL.ServerSSLSocketFactory.<init>(ServerSSLSocketFactory.java:34)
at weblogic.security.SSL.ServerSSLSocketFactory.getDefault(ServerSSLSocketFactory.java:40)
...
...
....
....
<Alert> <Security> <BEA-090717> <Invalid server AdminServer SSL configuration>
<Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: couldnot get server SSL identity
weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration
....
....
<Error> <WebLogicServer> <BEA-000297> <Inconsistent security configuration, weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration>
<Emergency> <Security> <BEA-090034> <Not listening for SSL, weblogic.management.configuration.ConfigurationException: Invalid server AdminServer SSL configuration.>
Full error stack is as follows:
Changes
Changes have been made to setDomainEnv.sh JAVA_OPTIONS to include the following arguments:
-Dweblogic.security.TrustKeyStore=/u01/app/oracle/keystores/keystore.jks
Cause
Sign In with your My Oracle Support account |
|
Don't have a My Oracle Support account? Click to get started |
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms