When
I was trying to Configure a Node Manager I faced different kinds of
exceptions. One of them is
WARNING:
Uncaught exception in server handlerjavax.net.ssl.SSLKeyException:
[Security:090482]BAD_CERTIFICATE alert was received from 127.0.0.1 -
127.0.0.1. Check the peer to determine why it rejected the
certificate chain (trusted CA configuration, hostname verification).
SSL debug tracing may be required to determine the exact reason the
certificate was rejected.
javax.net.ssl.SSLKeyException:
[Security:090482]BAD_CERTIFICATE alert was received from 127.0.0.1 -
127.0.0.1. Check the peer to determine why it rejected the
certificate chain (trusted CA configuration, hostname verification).
SSL debug tracing may be required to determine the exact reason the
certificate was rejected.
Even
Though Node Manager is Started Successfully , I was unable to perform
any operation on the managed Nodes.
We
face this kind of errors while starting the server using node
managers. These error occures when the Certificates or the SSL
configuration is not correct. So During this case we need to check
whether the Certificates are correct or not
If
Admin Server and the Node Manager are using demo certificates which
comes with WebLogic by default, then then we need to check the DNS
name is correct or not.
Since
I was testing the Node Manager , I disabled the Host Name
Verification to make sure whether the issue wit the Incorrect Host
name in the Certificate
For
doing this , I just passed the
-Dweblogic.security.SSL.ignoreHostnameVerification=true
to the JAVA_OPTS to the StartServer.sh Script
mean
while for the startNodeManager.sh script too I added ,
-Dweblogic.nodemanager.sslHostNameVerificationEnabled=false
In
Order to make sure the issue was with the SSL , we can change the
communication between the admin server and the node manager.
we
can set
SecureListener=false
in <WL_HOME>\common\nodemamaner\nodmanager.properties
And
also under machines, change the Listen Type to “Plain” from Admin
Console.
Machine->Machine1->nodemanager—>type
(Plain)
Then
the communication between Admin Server and NodeManger will not be
over SSL.
Once
the Changes are Done ,the Communication between the Node Manager and
Admin server is Successfully.
