Unable To Access WLS or EM console After Setting Up New SSL Certificate - Error "No identity key/certificate entry was found under alias"
(Doc ID 2711062.1)
Last updated on DECEMBER 15, 2023
Applies to:
SOA Suite Cloud Service - Version N/A and laterInformation in this document applies to any platform.
Symptoms
After configuring SOACS with a Public CA signed certificate chain (in a non-OTD environment), the Admin Server starts up, but it is not possible to access the WebLogic Console or Enterprise manager.
In the Admin Server logs the following errors show that the Admin Server is not able to listen on SSL using channel "SecuredExternAdmin" :-
####<Sep 10, 2020 4:19:22,595 PM UTC> <Emergency> <Security> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-1eb4-48ae-x-x-000000dc> <1599764782595> <[severity-value: 1] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-090034> <Not listening for SSL, weblogic.management.configuration.ConfigurationException: No identity key/certificate entry was found under alias XXXX in keystore kss://system/custIdentity on server mysoacs_adminserver..>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Error> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-1eb4-x-x-000000dc> <1599764782596> <[severity-value: 8] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-002606> <The server is unable to create a server socket for listening on channel "SecuredExternAdmin". The address 10.0.0.3 might be incorrect or another process is using port 7002: java.io.IOException: No identity key/certificate entry was found under alias XXXXX in keystore kss://system/custIdentity on server mysoacs_adminserver.>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Notice> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <weblogic.socket.ServerListenThread> <> <> <x-1eb4-x-x-x-x> <1599764782596> <[severity-value: 32] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-002613> <Channel "ExAdmin" is now listening on 10.0.0.3:7001 for protocols t3, http.>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Info> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-x-48ae-x-x-x> <1599764782596> <[severity-value: 64] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-002619> <One or more listen ports did not start properly.>
.
.
.
####<Sep 10, 2020 4:19:22,638 PM UTC> <Notice> <WebLogicServer> <x-wls-1.x.x.x.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <x-x-48ae-x-x-000000dc> <1599764782638> <[severity-value: 32] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <BEA-000360> <The server started in RUNNING mode.>
####<Sep 10, 2020 4:19:22,596 PM UTC> <Error> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <
####<Sep 10, 2020 4:19:22,596 PM UTC> <Notice> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <weblogic.socket.ServerListenThread> <
####<Sep 10, 2020 4:19:22,596 PM UTC> <Info> <Server> <x-wls-1.x.x.oraclevcn.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <
.
.
.
####<Sep 10, 2020 4:19:22,638 PM UTC> <Notice> <WebLogicServer> <x-wls-1.x.x.x.com> <mysoacs_adminserver> <[ACTIVE] ExecuteThread: '32' for queue: 'weblogic.kernel.Default (self-tuning)'> <
The Public CA signed certificate chain was imported based on the steps in the SOACS documentation
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |
| References |