• Find us:
    +1-669-900-5138   |   +44-203-372-5553
  • Free Newsletter

    Get Latest Updates

  • Make Training Enquiry


    Company

  • Categories

  • Archive

  • Start WebLogic Server on Linux on port 80, 443 <= 1024

    Posted by "" in "weblogic" on 2008-09-21

    Share on FacebookTweet about this on TwitterShare on Google+Share on LinkedInEmail this to someone

    On Unix based system (Linux, Solaris ..), only super user (root) can start any process on port <= 1024 . From security reasons its is not desirable to run WebLogic server as root user.  Solution is to start WebLogic process as root (bind on port 80, 443) and then switch process to non privileged user like oraweblogic or nobody

     This is done by setting four properties in WebLogic  –

    weblogic.system.enableSetUID (Set User ID)
    weblogic.system.enableSetGID (Set Group ID)
    weblogic.system.nonPrivUser(Non privledged user)
    weblogic.system.nonPrivGroup(Non privledged Group) 

    1. By setting value of enableSetUID to true; you are instructing weblogic server to switch from ROOT(after starting weblogic server on port 80, 443 or <=1024) to lower privileged user.

    2. Value assigned to nonPrivUser will be used to own weblogic server process, once its been started by superuser in port <= 1024

    3. Ensure that lower privileged user should have proper access (read, write or both depending on type of type) on files (log, classes..) required by weblogic server.

    4. If you wish to start and access weblogic server on both SSL (443) and non SSL (80); you need to define two Listen Port.

    .

    How to start WebLogic Server on port 80 or 443 on Linux/Unix

    1. Login to Administration Server Console using

    http://host:admin:port/console

    .

    2. Define new Linux machine from Administration console

    Under Domain Structure >> Environment >> Machines >> New

    .

    3. Enter Name of Machine (Machine1) & Machine OS (Unix) and click on OK

    .

    4. Click on machine (Machine1) which you created above

    .

    5. Select “Enable Post-Bind UID” and enter Post-Bind UID
    Select “Enable Post-Bind GID” and enter Post-Bind GID

    click Save

    In my case oraweblogic is operating system user on machine1 and dba is group of oraweblogic owning WebLogic installation/software.

    .

    6. Set Listen Port

    Domain Structure >> Environment >> Servers >> (Select your Managed Server)

    Set Listen port to 80 or 443 for respective Managed Server (Linux/Unix, for which you need to start Server on 443 or 80) and attach Machine (Machine1) you created above

    .

    7. Depending on setting on Admin Console you may have to activate changes from Change Center (In my case changes take into effect immediately)
     

    .

    References

    Related Posts for Learn WebLogic with Us


    1. Oracle WebLogic Installation Steps
    2. Domain , Administration & Managed Server, Cluster in Oracle WebLogic
    3. Create Domain in Oracle WebLogic
    4. Oracle WebLogic Server – Startup/Shutdown
    5. Oracle WebLogic Server 10g R3 10.3 is out now
    6. Deploy Application on Oracle WebLogic Server
    7. Cluster Architecture : Oracle WebLogic Server
    8. Start WebLogic Server on Linux on port 80, 443 <= 1024
    9. JDBC (Java DataBase Connectivity ) in Oracle WebLogic – Overview
    10. WebLogic Server JDBC for Database connection : Step by Step
    11. Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users
    12. Deploy ADF application to Oracle WebLogic Server
    13. Node Manager in Oracle WebLogic Server
    14. Configure Oracle HTTP Server infront of Oracle WebLogic Server mod_wl_ohs
    15. How to install weblogic server on 64 bit O.S. (Linux /Solaris) ?
    16. Oracle WebLogic Login Issue : Password is not correct (Password Lock Policy)
    17. Oracle WebLogic Server : Node Manager in nutshell
    18. Certification : 1Z0-108 Oracle WebLogic Server 10g System Administrator Certified Expert
    19. How to integrate WebLogic with Oracle Internet Directory for Login : Authentication
    20. opatch, adpatch and now “smart update” (BSU) to apply weblogic patches
    21. Disater Recovery documentation for Oracle WebLogic Server 11g (Fusion Middleware)
    22. Authentication Providers in #WebLogic – Oracle Access Manager Identity Assertion for Single Sign-On and OAM Authenticator
    23. Error while starting WebLogic Server : java.lang.NumberFormatException: null
    24. #WebLogic startup prompting from username password : boot.properties
    25. BEA-000286 : Failed to invoke startup class “JRF Startup Class” oracle.jrf.wls.JRFStartup
    26. WebLogic Kerberos (SSO) Authentication Issue : Error 401 Forbidden : No Configuration was registered that can handle the configuration named com. sun. security. jgss. krb5. accept
    27. How to reset Lost Oracle WebLogic Password for Fusion Middleware Applications
    28. Oracle WebLogic Server Certification : 1Z0-108 Practice Question and Dumps
    29. WebLogic Startup fails with Unable to obtain lock on Server may already be running
    30. Oracle Weblogic 12c Launch : Attend online on 1 Dec 2011
    31. Oracle WebLogic 12c (12.1.1) is now available to download
    32. How to Install WebLogic 12C (12.1.1) on Mac
    33. Oracle #WebLogic Server 12c : SE vs EE vs Suite License Options
    34. SSL in WebLogic (CA, KeyStore, Identity & Trust Store) : Things you must know – Part I
    35. SSL in WebLogic Server – Part II : Create KeyStore, generate CSR, Import CERT and configure KeyStore with WebLogic
    36. WebLogic Admin Server Start-up hanging at “Initializing self-tuning thread pool”
    37. Error in WebLogic Clustering : socket MaxMessage Size Exceeded Exception
    38. Changed or New Features in WebLogic 12.1.2
    39. WebLogic SSL configuration : Inconsistent security configuration Cannot convert identity certificate
    40. Dynamic Cluster in WebLogic 12.1.2 : New Features in WebLogic 12c
    41. Identity Propagation between two WebLogic Domains : Cross Domain Security VS Global Trust
    42. WebLogic Admin Server Start Up hangs at ‘Log Management’ BEA-170019 IIOP subsystem enabled
    43. Security:090294 could not get connection javax. net. ssl. SSLKeyException FATAL Alert BAD_CERTIFICATE – A corrupt or unuseable certificate was received
    44. WLST connecting to WebLogic Admin Server failed : Bootstrap to [IP:Port] failed. It is likely that the remote side declared peer gone on this JVM

    16 Responses to “Start WebLogic Server on Linux on port 80, 443 <= 1024”

    1. dangana says:

      good day atul,
      i have sent an email to atul[at]onlineappsdba.com about how to participate in this blog but have not recieved your response, hope i will recieve the response via my email address
      dangana7457[at]yahoo.com
      Best Regards

    2. Atul says:

      Hi Dangana,
      Thanks for your interest, I replied to ID dangana7457[at]yahoo.com on 10th sep. with details. Sending it one more time. If you don’t see message in your inbox mail me alternate number.

      Atul

    3. Sathya says:

      Hi Atul,
      I was trying to configure WebLogic server on port 80, 443. I followed the same steps u mentioned in this blog. But i am facing an error while starting the managed server. The error trace is below,

      <Cannot switch to user “oraweblogic”. java.lang.IllegalArgumentException: Cannot initgroups(“oraweblogic”), system error: ‘Operation not permitted’
      java.lang.IllegalArgumentException: Cannot initgroups(“oraweblogic”), system error: ‘Operation not permitted’
      at weblogic.platform.Unix.setUser0(Native Method)
      at weblogic.platform.Unix.setUser(Unix.java:31)
      at weblogic.t3.srvr.SetUIDRendezvous.setUser(SetUIDRendezvous.java:120)
      at weblogic.t3.srvr.SetUIDRendezvous.makeUnPrivilegedFinal(SetUIDRendezvous.java:167)
      at weblogic.t3.srvr.SetUIDRendezvous.finish(SetUIDRendezvous.java:96)
      Truncated. see log file for complete stacktrace

      I started the admin server as root and managed server as non-root. Correct me if i am wrong..

      Thanks in advance.

    4. santhosh says:

      Hi Atul

      Thanks for your posting
      They are very useful to me

      Can you post how to configure Apache,IIS and JBOSS with weblogic
      Thanks
      Santhosh

    5. stumble says:

      Hi Atul,

      I am trying to follow these directions to set up weblogic to run on port 443. I get up to the last step and for me, there is no pull down menu to attach Machine (Machine1) that I created. It just says “(None)”

      Did I do something wrong? Is there a way around this?

      Thanks in advance

    6. stumble says:

      Ok, so I was able to figure out how to attach the machine, but I cannot activate my changes. It says that I “Cannot update ‘Machine’ while the server is running.” However, I cannot stop the server because if I do, then I will not have access to the console. Is there any way around this?

      Thanks.

    7. stumble says:

      I understand how to stop and start the server from the command line; however, my changes never get activated. So I can stop and start it as much as I want without the machine ever getting attached to the correct server instance. Is there a way for me to activate changes from the command line after I stop weblogic?

      Thank you so much!

    8. Veeresh says:

      Hi Atul,

      all the composites in soa server are exposed as webservice as http://domain_name:8001/comositename?WSDL.

      Suddenly on fly the host and port got changed to https://domain:443 . So this made all composites crashed.

      And also we checked your above post..we dont have any port enabled for 443.. we are wonderd that how dynamically its got changed from http to https and 8001 port to 443.

      We need your suggesion on this.Please help us.

    9. […] Changing/Starting OHS (Oracle HTTP Server) 11g on Port 80 on Unix Posted in June 10th, 2010 byAtul Kumar in fusion, ohs  Print This Post This post covers steps to start OHS (Oracle HTTP Server) 11g on port 80 on Unix (To start any process on port < 1024 that process should run as ROOT).  If you are looking for steps to start WebLogic Server on port 80 (Non SSL) or 443 (SSL) then click here […]

    10. Paranormal says:

      hello Atul
      im facing a problem i couldnt find anything about it here nether in oracle weblogic forum
      its about
      Automating Weblogic Startup/Shutdown on Linux
      im using CentoOS 5.5 and weblogic 10.3

      but my problem is that i want to startup/shutdown weblogic on system start/shutdown
      i defined weblogic as service ( i tried all levels) and it works but the problem is
      when the system is booting it start weblogic but it stops continue system boot!

      i also tries put the start weblogic on the .bash_profile
      the system boot but when im trying to login it stops because the same problem
      (weblogic startup and prevent contitnue the loginin )

      i also tried to add startWeblogic in /etc/rc.d/rc.local
      and the same problem when weblogic start system cant continue booting

      i also tried using nohup
      also the same problem

      is there any way to do that
      i posted this problem in oracle weblogic forum but no
      answered me
      so i used google and i found that you have a lot of interesting perfect articles about weblogic
      i said may be i can find help here

      thankx

    11. Rajat says:

      Hi Atul,
      My Weblogic server is not starting up after this change. It says > <Cannot switch to group “oracle”. java.lang.IllegalArgumentException: setegid: no such g roup: ‘oracle’

      How can i revert back the change?

      Regards,
      Rajat

    12. Atul Kumar says:

      @ Rajat,
      RTo reveert back changes restore DOMAIN_HOME (domain directory) from backup.

      Most of these changes are stored in $DOMAIN_HOME/config/config.xml

    13. zia says:

      Hi Atul,

      i have SSL enabled on weblogic, how to do port redirection from 7001 to 7002 from weblogic side?

      eg: if user type the URL
      http://mydomain.com:7001/application it shld redirect to
      https://mydomain.com:7002/application

      Appreciate your help…

      Thanks

      • Atul Kumar says:

        @ Zia,
        There is no out of the box feature in weblogic to achieve this. If you want to so something like this then configure OHS or Apache in front of weblogic and use mod_rewrite to achieve this .

    14. fannaq says:

      Hi Atul.

      I know how to create datasource. and how to install database. but after creating datasource my test connection failed again and again.

      I want to know that how to set environment variable and what are other necessary files required to edit for datasource connection.

      Please provide me the step

      weblogic version is 10.3.6 and oracle database is 11g

      thanks,
      farhan

    Leave a Reply



  • K21 Technologies is among the most experienced Oracle Gold Partner for Identity Access Management service providers. We work with application development companies and in-house technology division to help achieve significant returns on their IT security investment. Our clientele includes some of the globally renowned corporate, which speaks of our expertise in our field.

    We have the most talented and experienced team that can swiftly deploy security solutions even in complex IT ecosystem. Our clients highly appreciate our timely implementation, interactive training, on-demand support and community resources.
  • CONTACTS

    K21 Technologies
    8 Magnolia Place, Harrow,
    London, HA2 6DS

    UK: +44(0)7476444481
    USA: +1-888-414-1821

  • 2014, K21 Technologies. All rights reserved DMCA.com
  • TOP