Reputation: 85
It is possible that a weblogic ssl communication accept all certificates?
I want to implement a client application to get some information of a weblogic server. The communication has to be secure because the weblogic server is configure secure.
Now I'm able to establish a ssl communication. With following settings:
System.setProperty("weblogic.security.TrustKeyStore", "CustomTrust");
System.setProperty("weblogic.security.CustomTrustKeyStoreFileName", tmpTruststore.getAbsolutePath());
System.setProperty("weblogic.security.CustomTrustKeyStorePassPhrase", "somePW");
System.setProperty("weblogic.security.CustomTrustKeyStoreType", "JKS");
It is possible that a weblogic ssl communication accept all certificates? It would make the application more convenient in handling. I think of a solution similar to the override of X509TrustManager. If so, can someone give me an example? Otherwise can you give me an answer with the reasons?
Upvotes: 2
Views: 1438
Answers (1)
Reputation: 643
No it is not possible. Having an SSL connection between two entities in which one accepts all data defeats the purpose of having a secure connection. Either use a non-SSL port for convenience or configure the trust stores for security. Can't have both. Sorry.
Upvotes: 1
Related Questions
- Client Certificate using Weblogic
- Weblogic 10.3.3 and SSL SHA256 certs
- enabling SSL on weblogic
- ssl weblogic with identity keystore
- weblogic client certificate authentication per webapp module
- How to use certificates from weblogic realm keystores inside web application?
- how to enable trust for chain certs in weblogic or java
- WebLogic Server - SSL - Multiple certificates
- weblogic ssl with custom truststore
- weblogic as ssl client (single side auth)