My Oracle Support Banner

About Demonstration CA and Identity Certificates and KeyStores on WebLogic 14.1.2 (Doc ID 3069352.1)

Last updated on JANUARY 29, 2025

Applies to:

Oracle WebLogic Server - Version 14.1.2.0.0 and later
Information in this document applies to any platform.

Goal

The demonstration (demo) CA and identity certificates and keystores are changed in WebLogic version 14.1.2.
This document summarize the points of the per domain demonstration certificates and keystores.

Note:Oracle does not recommend using the demo certificates, or turning off host name verification, in production environments.

 

Per Domain CA

Oracle WebLogic Server 14c (14.1.2.0.0) overhauls the demonstration certificate authority (CA) to provide a more secure keystore implementation.

The demo CA is now unique to each new domain rather than shared across all installations of WebLogic Server. Additionally, the identity and trust keystores are now in PKCS12 format.

The validity periods for the new demo CA and keystores are shortened compared to previous releases. They now expire after 5 years and 6 months, respectively.

The demo CA and keystores continue to be for development and testing purposes only. We strongly discourage you from using them in production environments.

For more information on configuring keystores, see Using Keystores and Certificates in a Development Environment in Administering Security for Oracle WebLogic Server.

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Goal
Solution
 Demo Keystores:
 DemoIdentity.p12
 DemoTrust.p12
 Demo certificates:
 democert.der
 democacert.der
 Properties file:
 DemoCerts.props
 FAQ
 Q1, How to renew the demo cerificates and keystores?
 Q2, Can I extend or specify the expiration date of the demo certificates?
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.