• Find us:
    +1-669-900-5138   |   +44-203-372-5553
  • Free Newsletter

    Get Latest Updates

  • Make Training Enquiry


    Company

  • Categories

  • Archive

  • Configure Oracle HTTP Server infront of Oracle WebLogic Server mod_wl_ohs

    Posted by "" in "weblogic" on 2009-09-23

    Share on FacebookTweet about this on TwitterShare on Google+Share on LinkedInEmail this to someone

    mod_wl_ohs: is a module in Oracle HTTP Server 11g R1 which allows requests to be proxied from Oracle HTTP Server (OHS) to Oracle WebLogic Server.

    mod_weblogic: This module is part of Apache HTTP Server and allows requests to be proxied from Apache HTTP Server to Oracle WebLogic Server.

    For difference between mod_wl_ohs and mod_weblogic click here

    Things good to know about configuring OHS infront of weblogic

    1. You can use Fusion Middleware control /em (register OHS with weblogic Server to access it from control) , steps here  or directly update httpd.conf  (steps given below) to configure mod_wl_ohs

    2. If weblogic server is clustered then mod_wl_ohs uses simple round-robin to forwards requests from HTTP Server to all available weblogic servers.
      mod_wl_ohs directs HTTP requests containing a cookie, URL-encoded session, or a session stored in the POST data to the server in the cluster that originally created the cookie.

    3. mod_wl_ohs (as of 11gR1) only support container level failover and NOT application level failover. mod_wl_ohs continues to route requests to a down application as long as the managed server is up and running.

    4. Configuration file of mod_wl_ohs is $INSTANCE_HOME/ config/ OHS/ <component_name>/ mod_wl_ohs.conf and included in $INSTANCE_HOME/ config/ OHS/ <component_name>/ httpd.conf (entry like
    include “${ORACLE_INSTANCE}/ config/ ${COMPONENT_TYPE}/${COMPONENT_NAME}/ mod_wl_ohs.conf”)

    5. mod_wl_ohs module file is available at $ORACLE_HOME/ ohs/ modules/ mod_wl_ohs.so

    6. You can either use URL like /console using location directive (<Location /console>) or MatchExpression directive in mod_wl_ohs.conf to forward requests from HTTP Server to WebLogic Server.

    7. While starting OHS on Windows, if you see error like

    C:/atul/ fmw/ instances1/ config/ OHS/ ohs1/ mod_wl_ohs.conf:
    Cannot load C:/ atul/ fmw/ ohs/ modules/ mod_wl_ohs.so into server: The specified module could not be found

    Check mod_wl_ohs.so exists in specified location, if yes then
    Copy “$ORACLE_HOME\ oui\ lib\ win32\ msvcp71.dll” to “c:\ windows\ system32″ and try again

    .
    Configure HTTP Serer infront of WebLogic Server

    1. Install WebLogic Server and define server listening on port XXXX (7001 in this example)

    2. Install Oracle HTTP Sever 11g steps here

    3. Modify mod_wl_ohs.conf
    $ORACLE_INSTANCE/ config/ <COMPONENT_TYPE>/ <COMPONENT_NAME>/ mod_wl_ohs.conf

    a) For weblogic single instance

    <Location /console>
        SetHandler weblogic-handler
        WebLogicHost server1
        WeblogicPort 7001
    </Location>

    * This will forward /console from HTTP server to /console on WebLogic Server server1:7001

    b) For Weblogic instances in cluster

    <Location /myServerURL>
        SetHandler weblogic-handler
        WebLogicCluster server1:7010,server2:7010
    </Location>

    * This will forward /myServerURL from HTTP server to /myServerURL on WebLogic Cluster server1:7010 and server2:7010
     

    4. Restart HTTP Server
    $INSTANCE_HOME/ bin/ opmnctl restartproc ias-component=ohs1

    5. Test that you can access application deployed on Weblogic using Oracle HTTP Server like

    http://servername:ohs_http_port/console

    References

    Related Posts for Learn WebLogic with Us


    1. Oracle WebLogic Installation Steps
    2. Domain , Administration & Managed Server, Cluster in Oracle WebLogic
    3. Create Domain in Oracle WebLogic
    4. Oracle WebLogic Server – Startup/Shutdown
    5. Oracle WebLogic Server 10g R3 10.3 is out now
    6. Deploy Application on Oracle WebLogic Server
    7. Cluster Architecture : Oracle WebLogic Server
    8. Start WebLogic Server on Linux on port 80, 443 <= 1024
    9. JDBC (Java DataBase Connectivity ) in Oracle WebLogic – Overview
    10. WebLogic Server JDBC for Database connection : Step by Step
    11. Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users
    12. Deploy ADF application to Oracle WebLogic Server
    13. Node Manager in Oracle WebLogic Server
    14. Configure Oracle HTTP Server infront of Oracle WebLogic Server mod_wl_ohs
    15. How to install weblogic server on 64 bit O.S. (Linux /Solaris) ?
    16. Oracle WebLogic Login Issue : Password is not correct (Password Lock Policy)
    17. Oracle WebLogic Server : Node Manager in nutshell
    18. Certification : 1Z0-108 Oracle WebLogic Server 10g System Administrator Certified Expert
    19. How to integrate WebLogic with Oracle Internet Directory for Login : Authentication
    20. opatch, adpatch and now “smart update” (BSU) to apply weblogic patches
    21. Disater Recovery documentation for Oracle WebLogic Server 11g (Fusion Middleware)
    22. Authentication Providers in #WebLogic – Oracle Access Manager Identity Assertion for Single Sign-On and OAM Authenticator
    23. Error while starting WebLogic Server : java.lang.NumberFormatException: null
    24. #WebLogic startup prompting from username password : boot.properties
    25. BEA-000286 : Failed to invoke startup class “JRF Startup Class” oracle.jrf.wls.JRFStartup
    26. WebLogic Kerberos (SSO) Authentication Issue : Error 401 Forbidden : No Configuration was registered that can handle the configuration named com. sun. security. jgss. krb5. accept
    27. How to reset Lost Oracle WebLogic Password for Fusion Middleware Applications
    28. Oracle WebLogic Server Certification : 1Z0-108 Practice Question and Dumps
    29. WebLogic Startup fails with Unable to obtain lock on Server may already be running
    30. Oracle Weblogic 12c Launch : Attend online on 1 Dec 2011
    31. Oracle WebLogic 12c (12.1.1) is now available to download
    32. How to Install WebLogic 12C (12.1.1) on Mac
    33. Oracle #WebLogic Server 12c : SE vs EE vs Suite License Options
    34. SSL in WebLogic (CA, KeyStore, Identity & Trust Store) : Things you must know – Part I
    35. SSL in WebLogic Server – Part II : Create KeyStore, generate CSR, Import CERT and configure KeyStore with WebLogic
    36. WebLogic Admin Server Start-up hanging at “Initializing self-tuning thread pool”
    37. Error in WebLogic Clustering : socket MaxMessage Size Exceeded Exception
    38. Changed or New Features in WebLogic 12.1.2
    39. WebLogic SSL configuration : Inconsistent security configuration Cannot convert identity certificate
    40. Dynamic Cluster in WebLogic 12.1.2 : New Features in WebLogic 12c
    41. Identity Propagation between two WebLogic Domains : Cross Domain Security VS Global Trust
    42. WebLogic Admin Server Start Up hangs at ‘Log Management’ BEA-170019 IIOP subsystem enabled
    43. Security:090294 could not get connection javax. net. ssl. SSLKeyException FATAL Alert BAD_CERTIFICATE – A corrupt or unuseable certificate was received
    44. WLST connecting to WebLogic Admin Server failed : Bootstrap to [IP:Port] failed. It is likely that the remote side declared peer gone on this JVM

    77 Responses to “Configure Oracle HTTP Server infront of Oracle WebLogic Server mod_wl_ohs”

    1. FRivas says:

      Hi Atul,

      I’ve noticed that you have a good knowledge of the Oracle Imaging platform…. Can you tell me if there is a way to read some old MO disks, written with Optika software, with some TIFF files? I did a RAW data dump of a disk, and on the header I can see the “Copyright Optika”, and “SYSSQL” strings…

    2. ADH says:

      I’ve had an SR open for 2 weeks waiting for this information.
      Found this page and had my DMZ server running within 15 minutes.
      THANK YOU for posting this!

    3. Karen says:

      Hello Atul

      Is it possible to configure the webgates on the weblogic http server embedded in the Weblogic app server, without the Oracle http server in front of it proxying requests.

      Thanks
      Karen

    4. Atul Kumar says:

      @ Karen,
      What is version of OAM & Weblogic ?

      OHS is recommended & easy way

    5. jaswinder says:

      I have come across an issue where the console hangs when using the Oracle http server only during activating changes in the console.

      Would appreciate if you could any comments on this.

    6. Lokanath says:

      Hi Atul,
      Is Oracle HTTP Server mandataory to access Weblogic Admin Console?.I have an Oracle HTTP (mod_wl_oh.conf or through some other files in httpd.conf ) configured for Managed servers and did not have entry for admin server but still able access admin console.

      Please let me access flow. My environment
      FMW11gR1, have Weblogic clusters.

    7. Atul Kumar says:

      @ Lokanath,
      No HTTP server is not mandatory to access WebLogic Admin Console and same applied to Managed Server. WebLogic Admin Console and Managed Server comes with default HTTP listeners (7001 for Admin Server and for Managed server one you define during installation)

      Why then you configure HTTP server infront of WebLogic ?
      This could be for number of reasons like
      a) You do not want to expose WebLogic Server (Admin or Managed) directly to end users for security reasons and want users to come via OHS
      b) You want to configure Single Sign-On solution like Oracle Access Manager (in this case though you can configure SSO solution directly with weblogic without a need of OHS but configuring SSO via OHS makes configuration/deployment easy)
      c) For multiple managed servers in cluster and you want to give single URL to end users.

    8. Linnet says:

      This post was very useful for me and I have the same set up, however I’m unable to get the OHS to pass client certificates in the header.

      When using the OHS user it prompts me to select my client certificate, I select it but nothing gets pushed to WebLogic. I put the same user certificate on WebLogic in a keystore and going through that url again it prompts me to select a user certificate and I am able to retrieve it from the headers.

      I know I haven’t gone into much detailed but any idea why this could be occurring?

    9. KINGSTAR says:

      Dear Atul,

      This is the body of the modified file: mod_wl_ohs.config (ps. does the hash key infront of a line in the config file comment is?)

      This empty block is needed to save mod_wl related configuration from EM to this file when changes are made at the Base Virtual Host Level

      WebLogicHost
      WebLogicPort
      Debug ON
      WLLogFile /tmp/weblogic.log
      MatchExpression *.jsp

      SetHandler weblogic-handler
      PathTrim /weblogic
      ErrorPage http:/vmucm:7001/

      the link I am trying to access is:(http:/vmucm:7777/console) is should redirect me to the Weblogic console page, it shows a page cannot be found message.

      yet, when I try to access both the weblogic or the OHS console directrly the work fine.

      one other question is that you ve refered me to a page that had more configurations for OHS, Page: (http://download.oracle.com/docs/cd/E12839_01/web.1111/e10144/getstart.htm#BEHGIDCB)
      Section: (4.4.4 Configuring the mod_wl_ohs Module)

      I cant seem to locate where this admin screen is. And is this additional configuration required or the mod_wl_ohs modification is enough?

    10. Atul Kumar says:

      @ ROCKSTAR

      Create an entry like

      SetHandler weblogic-handler
      WebLogicHost [weblogic_server_name]
      WeblogicPort 7001

      SetHandler weblogic-handler
      WebLogicHost [weblogic_server_name]
      WeblogicPort 7001

      1. Change [weblogic_server_name] to server name where weblogic admin server is running
      2. Restart OHS and try accessing url using OHS
      Restart

    11. KINGSTAR says:

      i have copied the file again and it is like this
      This empty block is needed to save mod_wl related configuration from EM to this file when changes are made at the Base Virtual Host Level

      WebLogicHost
      WebLogicPort
      Debug ON
      WLLogFile /tmp/weblogic.log
      MatchExpression *.jsp

      SetHandler weblogic-handler
      PathTrim /weblogic
      ErrorPage http:/vmucm:7001/

      not as in the previous post i have made

    12. Atul Kumar says:

      @ KINGSTAR,
      Don’t use EM, update file directly. Take backup of file before updating.

    13. KINGSTAR says:

      DEAR ATUL,

      i reach page 151 in your book and i need you to convert it to windows cause i am weak in unix,aslo hope see chapter 12 very soon
      thank you
      export
      LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/lib
      export
      LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/oracle/apps/idam/Middleware/Ora
      cle_WT1/lib
      cd /webgate/ohs/tools/setup/InstallTools
      cd
      /oracle/apps/idam/Middleware/Oracle_OAMWebGate1/webgate/ohs/tools
      /setup/InstallTools
      ./EditHttpConf -w [-oh
      ] [-o ]
      ./EditHttpConf -w
      /oracle/apps/idam/Middleware/Oracle_WT1/instances/instance1/confi
      g/OHS/ohs1 -oh /oracle/apps/idam/Middleware/Oracle_OAMWebGate1 -o
      /home/idam/output2.txt

    14. Atul Kumar says:

      @KINGSTAR,
      Thanks for highlighting this. use set command to set environment variable in wondows like

      set LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/oracle/apps/idam/Middleware/Oracle_WT1/lib

      where /oracle/apps/idam/Middleware is Middleware_Home

      I am going to update this in second revision of book.

    15. Jose Luis says:

      Hi Atul

      How Can I configure two aplications ADF with OAM11 but without OHS ?; WLS is 10.3.5.

      I Have to configure OAMAuthentication or OAMIdentityAsserter on the WebLogic, ?

    16. […] (bi_server1) and restart OHS. Test if you can access OBIEE via OHS Server . More on mod_wl_ohs here and […]

    17. Vikrant says:

      Download link for OHS which is a part of FMW Webtier. For some reason i need to struggle to locate this link.

      http://www.oracle.com/technetwork/java/webtier/downloads/index2-303202.html

    18. Vidya says:

      Hi,
      I am a newbie and trying to study OAM:
      I am trying to install OAM 11g, on windows 64-bit. Everytime time i try to patch webtier 11.1.1.2 with 11.1.1.3 i get the following error
      Error in writing to file ‘C:\Oracle\Middleware\Oracle_WT1\ohs\modules\mod_wl_ohs.so’. [C:\Oracle\Middleware\Oracle_WT1\ohs\modules\mod_wl_ohs.so (The process cannot access the file because it is being used by another process)]

      and a number of similar errors after i skip this one.

      Any suggestions would be really helpful.

    19. Atul Kumar says:

      @ Vidya,
      Is OHS server running while you are applying patch 11.1.1.3 ? If yes shutdown OHS before applying 11.1.1.3 patch

    20. Luke says:

      Hello,
      Is pssobile to use one OHS11g as proxy server for two WLS domains’ applications. I noticed that you configured for one domain with port 7001. But I have two WLS domains with ports 7001 and 7010. How can I utilize one OHS to protect the two WLS domains applications?

      TIA

      Luke.

    21. Atul Kumar says:

      @ Lukem
      Yes it is possible but these two application should have different URI like /app1/**** for application on domain1 and /app2/*** for application on domain2

    22. […] 4.3 Install OHS Server and configure mod_wl_ohs to forward requests to WebLogic server on which EBS acccessGate is deployed (more on mod_wl_ohs here) […]

    23. Alexander says:

      Hello Atul,
      What about sessions replication. It it work with OHS?

    24. eroach says:

      We have an existing Shibboleth IdP that we use as part of our campus SSO options. I would like to use that IdP to authenticate several of the components that we use from OFM 11g — specifically OHS and Oracle Report Server to start. Do we need to install OIF and OAM to do this?

      Thanks,
      Eileen

    25. Atul Kumar says:

      @ Alexander,
      For most of application yes session replication works but if there are few application like ADF where you need to specify in application code that this is going to be in HA . More information at section 6.1.3.2 http://docs.oracle.com/cd/E23943_01/core.1111/e10106/adf.htm#CACHBHEF

      persistent-store-type with value replicated_if_clustered

    26. ravi says:

      Hello Atul,

      How to redirect APEX requests from OHS to WebLogic Server?

      Java/J2EE applications are working fine.

    27. Afzal says:

      Hi ,

      I recently installed weblogic 12c in windows and below are my domain details

      Cluster name – test-cluster having two manage server in it ie server1 and Server-2 in listening on port 7003 and 7004 .

      Now i have deployed an app name myapp on the cluster and it is accessible if i access it through manage server port.

      I have installed OHS and i want to proxy my request so that my request goes through OHS to my app.

      I configured the same in mod_wl_ohs conf file and the details are below :

      SetHandler weblogic-handler
      WebLogicHost localhost
      WebLogicPort 7003

      SetHandler weblogic-handler
      WebLogicHost localhost
      WebLogicPort 7004

      SetHandler weblogic-handler
      WebLogicCluster localhost:7003,localhost:7004

      i restarted the ohs instances but when i tried accessing the myapp application through the url
      http://localhost:7777/myapp i am getting the below error in browser :-

      Failure of server APACHE bridge:

      No backend server available for connection: timed out after 10 seconds or idempotent set to OFF.
      Build date/time: Oct 29 2009 02:08:24

      Change Number: 1013

      Please help me out with this issue what is going wrong.I tried restarting the ohs instances as well as my domain and also allowed all http related service in my firewall but still the problem is persisting.

    28. Afzal says:

      Hi ,

      I recently installed weblogic 12c in windows and below are my domain details

      Cluster name – test-cluster having two manage server in it ie server1 and Server-2 in listening on port 7003 and 7004 .

      Now i have deployed an app name myapp on the cluster and it is accessible if i access it through manage server port.

      I have installed OHS and i want to proxy my request so that my request goes through OHS to my app.

      I configured the same in mod_wl_ohs conf file and the details are below :

      SetHandler weblogic-handler
      WebLogicHost localhost
      WebLogicPort 7003

      SetHandler weblogic-handler
      WebLogicHost localhost
      WebLogicPort 7004

      SetHandler weblogic-handler
      WebLogicCluster localhost:7003,localhost:7004

      i restarted the ohs instances but when i tried accessing the myapp application through the url
      http://localhost:7777/myapp i am getting the below error in browser :-

      Failure of server APACHE bridge:

      No backend server available for connection: timed out after 10 seconds or idempotent set to OFF.
      Build date/time: Oct 29 2009 02:08:24

      Change Number: 1013

      Please help me out with this issue what is going wrong.I tried restarting the ohs instances as well as my domain and also allowed all http related service in my firewall but still the problem is persisting

    29. scarmony says:

      I have the webtier HTTP server in front of weblogic server. I’m trying to do 2 way SSL. The client certificate is not being passed in the header to the application. I found some info about adding parameters into httpd.conf but most were depreciated and opmn would not start. I used the 10.3.5 plug-in document.

    30. AJS says:

      Your website is always helpful and easily understood. Thank you!

    31. ChuLy says:

      Hi,

      I configure HTTP Server as Webgate redirect to my app which is a Weblogic Portal page.

      But the page by request to HTTP Server shows less than page from request directly to WLS

      http://imageshack.us/photo/my-images/856/captureinc.png/

      What should i do to fix this problem?

    32. bernie says:

      We are using inbound SSL at our OHS server. This is terminated there and we then use mod_wl_ohs to proxy requests to the admin server console on WL at 7001 – so no SSL from OHS to WL.

      Because the WL admin app generates non-SSL links we also have to catch these using a port 80 listener in OHS and redirect back to OHS using SSL.

      However, this will not work for POST requests generated within the WL admin server as the POST data is lost when redirecting from 80 to 443. For example testing a WL data source uses POST.

      Is there any way to overcome this without having to use SSL between OHS and WL?

      Thanks,
      Bernie

    33. bernie says:

      Atul, thanks for your prompt – instant? – reply!
      In fact setting just WLProxySSL On has done the trick after enabling the plugin in WL.

      Many thanks for your help!

      Regards,
      Bernie

    34. Girish says:

      Hello Gurus
      I am trying to install 11gR2 Database
      on Linux 5.5
      The Oracle installer is running very slow,
      graphics are not display properly..any
      ideas.. Can anyone please tell me what i
      need to do.

      I have completed all Prereq steps for 11g DB
      installation.

      regards
      girish

    35. Atul Kumar says:

      @ Girish,
      What is total & free memory on server , are you installing from vnc or using X running on your desktop

    36. Girish says:

      Hi Atul,
      Please see the output of total & free memory
      it is a 64 bit machine.

      total used free shared buffers cached
      Mem: 11905024 2214952 9690072 0 135152 1441092
      -/+ buffers/cache: 638708 11266316
      Swap: 32901080 0 32901080

      regards
      girish

    37. Girish says:

      Hi Atul,
      I using xterm to install the software

      regards
      girish

    38. Atul Kumar says:

      @ Girish,

      Do you mean display is running locally on laptop and tunneling .

      If this is the case then this is common network issue. Install using vnc server or install from client which is on same subnet as server.

    39. syed says:

      Hi Atul,

      I installed OHS web tier with “Install Software – Do Not Configure” option and started the config.bat

      I am stuck at Specify Weblogic Domain Screen”

      Error “INST-07242 Unable to connect to weblogic admin server”

      what name should i give in the Domain Host Name.

      My weblogic domain host name is “el01cn01″
      The hostname of the server where I am installing web tier is “ucloud2″

      I tried giving both the names as well as localhost, but still it is not going forward.

      • Atul Kumar says:

        Do you need to integrate this OHS for weblogic ? If not then skip this step (uncheck integrate with WebLogic)

        If you need OHS to ointegrate with weblogic for managing OHS via em then provide hostname of WebLogic Admin Server and webLogic Admin Port. Did you start WebLogic Admin Server and can you connect from OHS host to weblogic host (where weblogic admin server is running) on weblogic admin port

    40. syed says:

      Thanks a lot Atul, for your advice on OHS Config.

      I have on more thing to clarify.

      I am starting weblogic admin server by using script. It starts fine, but when i exit that session it shutdown. It is a production environment. Is there any that I keep it running, even after I terminate or exit from that sesssion. I mean how to keep it up running 24×7.

      weblogic@el01cn01:~$ ./startWebLogic.sh &

      weblogic@el01cn01:~$
      weblogic@el01cn01:~$
      weblogic@el01cn01:~$ uname -a
      SunOS el01cn01 5.11 snv_151a i86pc i386 i86pc

      Regards

    41. Atul Kumar says:

      @ Syed,

      Change from ./startWebLogic.sh & to

      nohup ./startWebLogic.sh &

    42. Mannat says:

      Hi,

      I have configured the OHS in front of weblogic as per the steps. The request is received from HTTPS client and processed by my service. However the response is not being posted back to the https client. Please advise what can be done for such issue.

      Thanks
      -Mannat

    43. bernie says:

      Hi Mannat,
      This problem arises because Weblogic doesn’t know that you’re using SSL as it only sees HTTP requests and so builds its links to use HTTP. To make it use HTTPS carry out the following changes:

      1 Login to the Weblogic Administration Console
      2 Under Domain Structure open ‘Environment’ and then click ‘Servers’
      3 Click on Admin Server and Advanced
      4 Check the Web Plug-In enabled box and Save
      5 Repeat for all other managed servers

      Go back to the home pages and, under ‘Preferences’, select ‘Shared Preferences’
      Uncheck ‘Follow Configuration Changes’ and Save.

      You may then need to bounce the Weblogic stack.

      Regards,
      Bernie

    44. Mannat says:

      Bernie,

      Thanks a lot for the response. However after making the changes as mentioned above, I still don’t see the response being sent.
      Kindly advise.

      Thanks

      -Mannat

    45. bernie says:

      Hi Mannat,
      check your entries in mod_wl_ohs.conf – do they look like this?

      WLProxySSL On
      SetHandlerweblogic-handler
      WebLogicHost
      WeblogicPort

      You could also edit your httpd.conf to enable a listener on port 80 but redirect all requests to 443 – this is not very efficient but would catch any non-SSL redirects.

      Listen 80
      .
      .
      .

      # Rewrite to SSL for all requests
      RewriteEngine on
      Options +FollowSymLinks
      RewriteCond %{SERVER_PORT} !^443$
      RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI} [L,R]

      Hope that helps,

      Bernie

    46. bernie says:

      Update – in the previous response the bracketed/tagged lines were removed – see below….

      Hi Mannat,
      check your entries in mod_wl_ohs.conf – do they look like this?

      ‘open bracket’Location /some_URL’close bracket’
      WLProxySSL On
      SetHandlerweblogic-handler
      WebLogicHost ‘Your WL host’
      WeblogicPort ‘Your WL server non-SSL port’
      ‘open bracket’/Location’close bracket’

      You could also edit your httpd.conf to enable a listener on port 80 but redirect all requests to 443 – this is not very efficient but would catch any non-SSL redirects.

      Listen 80
      .
      .
      .
      ‘open bracket’VirtualHost *:80’open bracket’
      # Rewrite to SSL for all requests
      RewriteEngine on
      Options +FollowSymLinks
      RewriteCond %{SERVER_PORT} !^443$
      RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI} [L,R]
      ‘open bracket’/VirtualHost’open bracket’

      Hope that helps,

      Bernie

    47. Mannat says:

      Hi,

      Thanks a lot for the help. The issue was that client was not accepting the response.

      Regards
      -Mannat

    48. Jani says:

      Hi!

      What is about the cold failover? I have two weblogic servers without cluster, but with the same options. Can the OHS mod_wl_ohs use the simple round-robin to forwards requests all available weblogic servers? Can it check which weblogic is available, if there are not in cluster?

      Regards, Jani

    49. What if I could guarantee your business would be located in the UK,
      it is also the president of the board of the FXB Foundation.
      You should hire professionals for the designing a website
      that properly conveys your work attitude, potential and delivery
      pattern to assure the client of standardized services if he decides to business with you.
      These numbers show Yelp making $41. Every company offering
      Google spamdexing service in online marketing.

      As the list expands, i will format the content in
      a piece of content for your sites that have been paid for.

    50. Sri says:

      Where does the actual load balancing happens in HA environment.

      Is it at the Weblogic Cluster level or at the OHS level.

      Thanks, Sri

    51. Al Kahaulik says:

      I have:
      A) a managed server listening on hostname:7008
      B) an OHS Webtier installation listening on hostname:7777
      C) OAM installed with a webgate protecting 7777
      D) mod_wl_ohs configured to have OHS proxy for the weblogic managed server (7008) so that all requests to hostname:7777/application are protected by SSO.

      Problem is that if you are clever and point your browser to hostname:7008/application you can bypass SSO. Is there an easy way to get weblogic to NOT answer on 7008 or redirect to 7777 maybe?

    52. Al Kahaulik says:

      Thanks for the tip Atul. Great site!!

    53. senthil says:

      Hi
      In one of our Siebel implementations, the SunOne Web server is used with the Siebel App Server. Along with these, we have 2 web applications for Reporting (BI Publisher) & Rules Engine (OPA) hosted in Weblogic Server. The Sibel App Server communicates with these applications and users DO NOT directly interact with these applications.

      We are debating over, should we use a ‘Oracle HTTP Server’ as web server for Weblogic App Server, or would ‘Weblogic App Server’ themselves be sufficient ?

      Since there are no users who directly hit these 2 web applications in Weblogic (BI Publisher & OPA), and also there are not much of static content to be delivered, does it really makes sense to have a OHS web server ? How do you think it would benefit by having it ?

    54. tarun says:

      Hi Atul,

      I Installed weblogic12c in one server and OHS in One server.Now i have to configure the connection between those two.There is no clustered environment and i am working for test environment.
      I am working for bank there will be so many request and how can i modify my configuaration files bcoz every request wil come to that.For security reasons OHS will be the frontend for customers.i have created one domain and one OHS instance.
      Weblogic Domain admin name:admin server port 8001
      managed server name:server1 port 8003

      How can i configure these and u said for security weblogic shoulg not come for customers only OHS has to be visible.so please give me some suggestions.Bcoz so many requests will come for that url how i can allow all requests.

      Regards,
      Tarun

      • Atul Kumar says:

        @ Tarun,
        To block client’s accessing WebLogic directly , use Network Chanels in WebLogic (allow connection from OHS node only) or configure firewall between OHS and WebLogic and allow connection to weblogic only from OHS.

        You need to define entries like


        SetHandler weblogic-handler
        WebLogicHost [WebLogicHost]
        WeblogicPort 8001


        SetHandler weblogic-handler
        WebLogicHost [WebLogicHost]
        WeblogicPort 8003

    55. tarun says:

      Hi Atul,

      I have to know the configuration data in detail please Bcoz this is the first time i am working with weblogic and OHS.So no idea on that. Please help

      Regards,
      Tarun

    56. tarun says:

      Hi Atul,

      In the place of weblogic host wat can i give my system localhost or server rgt.

      Also u specified to give application name all users hitting that url they can access that application rgt.

      Regards,
      Tarun

    57. tarun says:

      Hi Atul,

      Please take application name as retail can i give that retail name like this.

      SetHandler weblogic-handler
      WebLogicHost [WebLogicHost]
      WeblogicPort 8003

      Every user can access this application rgt.sorry if i am asking so many questions bcoz i am new to weblogic and OHS

      raegrds,
      Tarun

    58. Atul Kumar says:

      @ Tarun,

      Paste exact URL of application on WebLogic Server and I’ll share what to enter in mod_wl_ohs.conf

      Atul

    59. tarun says:

      Thanks atul. I will be waiting for the response from u. I said i dont know anything but they pushed me into this project.

    60. tarun says:

      Hi Atul,

      SetHandler weblogic-handler
      WebLogicHost 10.192.2.45
      WeblogicPort 8003

      cani give like that

    61. Atul Kumar says:

      What is name of the application deployed on managed server running on 8003 ?

      For WebLogic Console

      SetHandler weblogic-handler
      WebLogicHost 10.192.2.45
      WeblogicPort 8001

      For applcation deployed on managed server running on 8003

      SetHandler weblogic-handler
      WebLogicHost 10.192.2.45
      WeblogicPort 8003

      Here weblogic is running on 10.192.2.45

    62. tarun says:

      Hi atul,

      We wont need console we need to run only application.They gave a ear file name bana623war.EAR.yes weblogic is runningon 10.192.2.45 and ohs running on 10.218.2.75

      Regards,
      Tarun

    63. tarun says:

      for security reasons we wont need console and there is no ssl also in test environment.In production we have everything

    64. tarun says:

      we have to access only OHS no need of weblogic console.Please give full command like this
      location/application
      SetHandler weblogic-handler
      WebLogicHost 10.192.2.45
      WeblogicPort 8003

      in place of application what i have to mention

    65. syed Abdul bari says:

      how to add the below path in mod_wl_ohs conf file. I used matachexpression and location both of them are not working properly

      http://172.16.102.108:7020/Yemen-DC/faces/login.jspx.

      MY mod_wl_ohs conf is as below:

      # MatchExpression *.jspx
      #WebLogicHost 172.16.102.108
      # WebLogicPort 7020
      # DynamicServerList Off
      # MatchExpression *.jspx

      # Login Page

      SetHandler weblogic-handler
      WebLogicHost 172.16.102.108
      WeblogicPort 7020

    66. vankasrikar says:

      Hi Atul,
      I’m protecting Webcenter application [on HTTP] with OAM and /webcenter is unprotected.
      Request comes through Load balancer which is on HTTPS and Webcenter is on HTTP, because of this the below files are getting blocked unless I manually unblock them in browser. [because of mixed content – HTTP vs HTTPS]

      http://wcp.test.k12lds.memsdc.org/webcenter/adf/spaces/skins/publichtml/publichtml.css
      http://wcp.test.k12lds.memsdc.org/webcenter/oracle/webcenter/webcenterapp/jsLibs/WebCenterLogin.js

      Is there anyway I can tell OHS server to change these from http to https? So that these files wont be blocked and page looks good?

      Thanks
      Srikar

    67. keko says:

      Hey

      Thanks for that information
      But is there any mechanism to use http server in front of oracle apps r12

      accessing url then web tier redirect it to oracle apps login

      Regards

    68. richard mendoza says:

      Hi Atul, I don’t know if you remember me, I worked with you a short time at optumRX in San Diego. Anyway, I am trying to modify the mod_wl_ohs configuration for a client, and am running into an error when I click on the link (webtier->ohs1->administration->mod_wl_ohs configuration) it returns: Failed to invoke operation load on MBean

      Any assistance would be helpful!
      Richard

    69. berniejones says:

      Richard,
      Has OAM been upgraded to 11.1.2.2 by any chance? I saw possibly similar issues after 11.1.2.0 -> 11.1.2.2 which required an SR to fix a broken config file.

      An alternative could be to edit the file directly in the ohs1 config directory.

      Regards,
      Bernie

    Leave a Reply



  • K21 Technologies is among the most experienced Oracle Gold Partner for Identity Access Management service providers. We work with application development companies and in-house technology division to help achieve significant returns on their IT security investment. Our clientele includes some of the globally renowned corporate, which speaks of our expertise in our field.

    We have the most talented and experienced team that can swiftly deploy security solutions even in complex IT ecosystem. Our clients highly appreciate our timely implementation, interactive training, on-demand support and community resources.
  • CONTACTS

    K21 Technologies
    8 Magnolia Place, Harrow,
    London, HA2 6DS

    UK: +44(0)7476444481
    USA: +1-888-414-1821

  • 2014, K21 Technologies. All rights reserved DMCA.com
  • TOP