Clik here to view.
Weblogic WLST connections using SSL
When your Administration Server, NodeManager and Managed Servers use SSL to communicate with each other you have a decent basic security for your Weblogic domain. (And NO, the default demo certs/stores...
View ArticleClik here to view.
Weblogic and Triple-DES encryption
>Weblogic allows you to store clear-text passwords in configuration files when you have a development domain, however production mode forces the use of Triple-DES block ciphers to store these...
View ArticleClik here to view.
Weblogic and Triple-DES decryption
After my earlier post regarding the Triple DES encryption Weblogic uses. The next question could be, can we decrypt the 3DES hash to cleartext again ? The answer is, yes you can. On the Internet...
View ArticleClik here to view.
Weblogic and IIS two-way TLS/SSL issue (debugging)
I’m blogging this to help other people who might experience the same problem. On the other hand there are some loose ends where someone out there might contribute to. So a project required SOAP/HTTP(S)...
View ArticleClik here to view.
Weblogic Security Realm WLST import and export
>This is just a reminder for myself, the code is not mine but can be found at multiple places on the web so I have no idea who the initial owner is and who to give credits. export configuration:...
View ArticleClik here to view.
Weblogic and OSB various keystore reminders
Default Weblogic DemoIdentity and DemoTrust keystore: I always forget the default passwords, so a quick reminder: Location: %WL_HOME%/server/lib File = DemoIdentity.jks keystore password =...
View ArticleClik here to view.
Using OWSM UsernameToken for authentication and authorisation of OSB services
With the use of Oracle Web Service Manager (OWSM) we can easily configure Oracle Service Bus (OSB) services with different message security polices. This configuration can be done from Eclipse (OEPE),...
View ArticleClik here to view.
Using UserName information in the Oracle Service Bus
I was debugging a OSB 11.1.1.5 proxy service which had a OWSM UserName token policy attached to it (read this blogpost how to configure your OSB). When I noticed the $inbound variable had some...
View ArticleClik here to view.
“Buffer underflow in doHandshake” SSL error in Oracle Service Bus
We are using Oracle Service Bus for SSL communication to an external party. Due to security regulations we use a proxy server configuration (note: not proxy service, but proxy server) on these specific...
View ArticleClik here to view.
Using basic authentication for Oracle BPM service call
In our Oracle BPM 11.1.1.6 process we need some calls to Oracle UCM/WCC. Since UCM requires basic authentication we need to make sure the BPM process sends a token. So in our composite we right-click...
View ArticleClik here to view.
Using the Oracle Credential Store Framework (CSF) in your Oracle BPM / ADF...
In our Oracle BPM/SOA project we initially started with 1 process which had a service call out to Oracle UCM/WCC. Since WCC uses basic authentication by default we enabled an OWSM policy on the...
View ArticleClik here to view.
Cloud integration using federation between Microsoft Office 365 Azure Active...
Not an Oracle blog for a change, but when an organization uses both Amazon Web Services (AWS) and Microsoft Office 365 it is possible to allow single sign-on with the internal LDAP Microsoft uses...
View ArticleClik here to view.
How to setup SSH access to Oracle Compute Cloud Service Instances
After playing around with the CLI it’s time to run some instance on the Oracle Compute Cloud Service. Oracle offers a broad range of images divided in 3 categories namely: Oracle images, Private images...
View ArticleClik here to view.
OSB – security store
>Yesterday something strange happened while configuring a Service Key Provider in the OSB SBconsole. The following error occured:Security:090802 PKI Credential Mapper has got an LDAP exception.And...
View ArticleClik here to view.
Oracle Service Bus and Siebel UserNameToken
In this case we need to publish messages from the OSB 10.3.1 to Siebel 8.1.1.2 where Siebel supports different options for authentication of incoming HTTP webservice requests. passing the user name and...
View ArticleClik here to view.
Weblogic WLST connections using SSL
When your Administration Server, NodeManager and Managed Servers use SSL to communicate with each other you have a decent basic security for your Weblogic domain. (And NO, the default demo certs/stores...
View ArticleClik here to view.
Weblogic and Triple-DES encryption
>Weblogic allows you to store clear-text passwords in configuration files when you have a development domain, however production mode forces the use of Triple-DES block ciphers to store these...
View ArticleWeblogic and Triple-DES decryption
After my earlier post regarding the Triple DES encryption Weblogic uses. The next question could be, can we decrypt the 3DES hash to cleartext again ? The answer is, yes you can. On the Internet...
View ArticleClik here to view.
How to combine Azure AD SSO with AWS programmatic access ?
Since we both use Azure AD (Office365 / LDAP) for the companies user management and AWS for our hosting we already enabled federation between these cloud providers. This works perfectly by assuming an...
View Article