My Oracle Support Banner

Unable To Access WLS or EM console After Setting Up New SSL Certificate - Error "No identity key/certificate entry was found under alias" (Doc ID 2711062.1)

Last updated on SEPTEMBER 17, 2020

Applies to:

SOA Suite Cloud Service - Version N/A and later
Information in this document applies to any platform.

Symptoms

After configuring SOACS with a Public CA signed certificate chain (in a non-OTD environment), the Admin Server starts up, but it is not possible to access the WebLogic Console or Enterprise manager.

In the Admin Server logs the following errors show that the Admin Server is not able to listen on SSL using channel "SecuredExternAdmin" :-


####<Sep 10, 2020 4:19:22,595 PM UTC> <Emergency> <Security> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-1eb4-48ae-x-x-000000dc> <1599764782595> <[severity-value: 1] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-090034> <Not listening for SSL, weblogic.management.configuration.ConfigurationException: No identity key/certificate entry was found under alias XXXX in keystore kss://system/custIdentity on server mysoacs_adminserver..>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Error> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-1eb4-x-x-000000dc> <1599764782596> <[severity-value: 8] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-002606> <The server is unable to create a server socket for listening on channel "SecuredExternAdmin". The address 10.0.0.3 might be incorrect or another process is using port 7002: java.io.IOException: No identity key/certificate entry was found under alias XXXXX in keystore kss://system/custIdentity on server mysoacs_adminserver.>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Notice> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <weblogic.socket.ServerListenThread> <> <> <x-1eb4-x-x-x-x> <1599764782596> <[severity-value: 32] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-002613> <Channel "ExAdmin" is now listening on 10.0.0.3:7001 for protocols t3, http.>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Info> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-x-48ae-x-x-x> <1599764782596> <[severity-value: 64] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-002619> <One or more listen ports did not start properly.>

.
.
.
####<Sep 10, 2020 4:19:22,638 PM UTC> <Notice> <WebLogicServer> <x-wls-1.x.x.x.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-x-48ae-x-x-000000dc> <1599764782638> <[severity-value: 32] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-000360> <The server started in RUNNING mode.>


The Public CA signed certificate chain was imported based on the steps in the SOACS documentation

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.