In WLS, you can import your own SSL cert into its trust keystore file to invoke "https" contents. Here is how you do that with the default WLS DemoTrust.jks
file.
bash> cd $WL_HOME/server/lib
bash> keytool -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase -list
bash> keytool -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase -importcert -alias mycert -file mycert.pem
# Or to delete the entry
bash> keytool -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase -delete -alias mycert
The file mycert.pem
can be obtained by any modern browser when you visit the "https" site. For example using Firefox, you can follow these steps to export the cert file:
-
Click on the Lock icon next to the URL in the broswer
-
Click More Information button, then go to the "Security Tab"
-
Click View Certificate button, then go to the Details tab
-
Click Export button
-
On the bottom right corner dropdown, select X.509 Cerificate with chain (PEM)
-
Type name of file to save (eg:
mycert.pem
) and then click Save button