Before WLS release 10.3.5, weblogic servers’s hostname verification code did not supports the wildcard certificate by default we have to create a custom hostname verification code to handle this scenario but from WLS release 10.3.5, weblogic servers hostname verification code by default supports the wildcard certificates.
Wildcard SSL Certificates work the same way as a regular SSL Certificate, allowing you to secure the connection between the client and server(www.abc.com) but a single Wildcard SSL Certificate covers any and all of the sub-domains of the main domain(*.abc.com)
Configuring Wildcard SSL HostnameVerifier:
- Launch WLS console
- Click on Environment -> Servers and click on the server
- Then go to SSL tab
- Lock & Edit
- Scroll down and expand advanced section
- Change Hostname verification entry to Custom Hostname Verifier
- Enter Below in Custom Hostname verifier “weblogic.security.utils.SSLWLSWildcardHostnameVerifier”
- Make sure the option Use JSSE SSL is selected.
- Restart the weblogic server.
Recent Comments