Package weblogic.management.configuration

Interface NetworkAccessPointMBean

All Superinterfaces:

ConfigurationMBean, DescriptorBean, javax.management.DynamicMBean, javax.management.MBeanRegistration, javax.management.NotificationBroadcaster, SettableBean, WebLogicMBean

public interface NetworkAccessPointMBean
extends ConfigurationMBean

A server can specify additional network connections by using a NetworkAccessPointMBean. The NetworkAccessPointMBean is also used to set the listen address and external DNS name that a server uses for a particular channel.

See Also:

ServerTemplateMBean, ServerTemplateMBean.getNetworkAccessPoints()

Field Summary

Fields inherited from interface weblogic.management.configuration.ConfigurationMBean

DEFAULT_EMPTY_BYTE_ARRAY

Method Summary

Modifier and Type	Method	Description
int	getAcceptBacklog()	The number of backlogged, new TCP connection requests that this network channel allows.
java.lang.String	getAllowListViolationAction()	Get the value of AllowListViolationAction attribute used with JEP 290 filtering.
int	getChannelWeight()	A weight to give this channel when creating server-to-server connections.
java.lang.String[]	getCiphersuites()	Indicates the cipher suites being used on a particular WebLogic Server channel.
java.lang.String	getClusterAddress()	The address this network channel uses to generate EJB handles and failover addresses for use in a cluster.
int	getCompleteMessageTimeout()	The maximum amount of time this network channel waits for a complete message to be received.
int	getConnectTimeout()	The amount of time that this network channel should wait to establish an outbound socket connection before timing out.
java.lang.String	getCustomIdentityKeyStoreFileName()	The source of the identity keystore.
java.lang.String	getCustomIdentityKeyStorePassPhrase()	The encrypted custom identity keystore's passphrase.
byte[]	getCustomIdentityKeyStorePassPhraseEncrypted()	Returns encrypted pass phrase defined when creating the keystore.
java.lang.String	getCustomIdentityKeyStoreType()	The type of the keystore.
java.lang.String	getCustomPrivateKeyAlias()	The string alias used to store and retrieve the channel's private key in the keystore.
java.lang.String	getCustomPrivateKeyPassPhrase()	The passphrase used to retrieve the server's private key from the keystore.
byte[]	getCustomPrivateKeyPassPhraseEncrypted()	The encrypted form of passphrase used to retrieve the server's private key from the keystore.
java.lang.String[]	getExcludedCiphersuites()	List of cipher suites not to be used by WebLogic Server.
java.lang.String	getHostnameVerifier()	The name of the class that implements the weblogic.security.SSL.HostnameVerifier interface.
int	getIdleConnectionTimeout()	The maximum amount of time (in seconds) that a connection is allowed to be idle before it is closed by this network channel.
java.lang.String	getInboundCertificateValidation()	Indicates the client certificate validation rules for inbound SSL.
java.lang.String	getListenAddress()	The IP address or DNS name this network channel uses to listen for incoming connections.
int	getListenPort()	The default TCP port this network channel uses to listen for regular (non-SSL) incoming connections.
int	getLoginTimeoutMillis()	The amount of time that this network channel should wait for a connection before timing out.
int	getMaxBackoffBetweenFailures()	The maximum back off time between failures while accepting client connections.
int	getMaxConnectedClients()	The maximum number of clients that can be connected on this network channel.
int	getMaxMessageSize()	The maximum message size allowable in a message header.
java.lang.String	getMinimumTLSProtocolVersion()	Get the minimum SSL/TLS protocol version to be used in a network channel.
java.lang.String	getName()	The name of this network channel.
java.lang.String	getOutboundCertificateValidation()	Indicates the server certificate validation rules for outbound SSL.
java.lang.String	getOutboundPrivateKeyAlias()	The string alias used to store and retrieve the outbound private key in the keystore.
java.lang.String	getOutboundPrivateKeyPassPhrase()	The passphrase used to retrieve the outbound private key from the keystore.
java.lang.String	getPrivateKeyAlias()	The string alias used to store and retrieve the channel's private key in the keystore.
java.lang.String	getPrivateKeyPassPhrase()	The passphrase used to retrieve the server's private key from the keystore.
java.lang.String	getProtocol()	The protocol this network channel should use for connections.
java.lang.String	getProxyAddress()	The IP address or DNS name of the HTTP proxy to use for outbound connections on this channel.
int	getProxyPort()	The port of the HTTP proxy to use for outbound connections on this channel.
java.lang.String	getPublicAddress()	The IP address or DNS name representing the external identity of this network channel.
int	getPublicPort()	The externally published listen port for this network channel.
boolean	getResolveDNSName()	Resolve the listen address to use for all T3 communication
boolean	getTimeoutConnectionWithPendingResponses()	Determines if connections with pending responses are allowed to timeout.
int	getTunnelingClientPingSecs()	The interval (in seconds) at which this network channel should ping an HTTP-tunneled client to see if its still alive.
int	getTunnelingClientTimeoutSecs()	The amount of time (in seconds) after which this network channel considers a missing HTTP-tunneled client to be dead.
boolean	getUseFastSerialization()	Specifies whether to use non-standard object serialization for performance.
boolean	isAllowUnencryptedNullCipher()	Test if the AllowUnEncryptedNullCipher is enabled
boolean	isChannelIdentityCustomized()	Whether or not the channel's custom identity should be used.
boolean	isClientCertificateEnforced()	Specifies whether clients must present digital certificates from a trusted certificate authority to WebLogic Server on this channel.
boolean	isClientInitSecureRenegotiationAccepted()	Deprecated. 14.1.2.0.0 We recommend you use the JDK RFC 5746: TLS Renegotiation Extension instead
boolean	isEnabled()	Specifies whether this channel should be started.
boolean	isHostnameVerificationIgnored()	Specifies whether to ignore the installed implementation of the weblogic.security.SSL.HostnameVerifier interface (when this server is acting as a client to another application server).
boolean	isHttpEnabledForThisProtocol()	Specifies whether HTTP traffic should be allowed over this network channel.
boolean	isOutboundEnabled()	Specifies whether new server-to-server connections may consider this network channel when initiating a connection.
boolean	isOutboundPrivateKeyEnabled()	Specifies whether the identity specified by getCustomPrivateKeyAlias() should be used for outbound SSL connections on this channel.
boolean	isSDPEnabled()	Deprecated. 14.1.1.0.0
boolean	isServerCipherSuitesOrderEnabled()	Indicates whether to honor the server cipher suites preference.
boolean	isSSLv2HelloEnabled()	Indicate whether SSLv2Hello is enabled in a network channel.
boolean	isTunnelingEnabled()	Specifies whether tunneling via HTTP should be enabled for this network channel.
boolean	isTwoWaySSLEnabled()	Specifies whether this network channel uses two way SSL.
void	setAcceptBacklog(int count)	Sets the value of the AcceptBacklog attribute.
void	setAllowUnencryptedNullCipher(boolean enable)	When a SSL server and a SSL client try to negotiate a commonly supported Cipher, there is a chance that they may end up with nothing in common.
void	setChannelIdentityCustomized(boolean val)	Sets the value of the ChannelIdentityCustomized attribute.
void	setChannelWeight(int weight)	Sets the value of the ChannelWeight attribute.
void	setCiphersuites(java.lang.String[] ciphers)	Sets the value of the Ciphersuites attribute.
void	setClientCertificateEnforced(boolean enforce)	Sets the value of the ClientCertificateEnabled attribute.
void	setClusterAddress(java.lang.String address)	Sets the value of the ClusterAddress attribute.
void	setCompleteCOMMessageTimeout(int seconds)	Sets the value of the CompleteCOMMessageTimeout attribute.
void	setCompleteHTTPMessageTimeout(int seconds)	Sets the value of the CompleteHTTPMessageTimeout attribute.
void	setCompleteIIOPMessageTimeout(int seconds)	Sets the value of the CompleteIIOPMessageTimeout attribute.
void	setCompleteMessageTimeout(int seconds)	Sets the value of the CompleteMessageTimeout attribute.
void	setCompleteT3MessageTimeout(int seconds)	Sets the value of the CompleteT3MessageTimeout attribute.
void	setConnectTimeout(int timeout)	Sets the value of the ConnectTimeout attribute.
void	setCustomIdentityKeyStoreFileName(java.lang.String fileName)	Sets the value of the CustomIdentityKeyStoreFileName attribute.
void	setCustomIdentityKeyStorePassPhrase(java.lang.String passPhrase)	Sets the value of the CustomIdentityKeyStorePassPhrase attribute.
void	setCustomIdentityKeyStorePassPhraseEncrypted(byte[] passPhraseEncrypted)	Sets the encrypted value of the CustomIdentityKeyStorePassPhrase attribute.
void	setCustomIdentityKeyStoreType(java.lang.String type)	Sets the value of the CustomIdentityKeyStoreType attribute.
void	setCustomPrivateKeyAlias(java.lang.String alias)	Sets the value of the PrivateKeyAlias attribute.
void	setCustomPrivateKeyPassPhrase(java.lang.String phrase)	Sets the value of the PrivateKeyPassPhrase attribute.
void	setCustomPrivateKeyPassPhraseEncrypted(byte[] passwordEncrypted)	Sets the encrypted value of the PrivateKeyPassPhrase attribute.
void	setEnabled(boolean enabled)	Sets the value of the Enabled attribute.
void	setExcludedCiphersuites(java.lang.String[] excludedCiphersuites)	Sets the value of the ExcludedCiphersuites attribute.
void	setExternalDNSName(java.lang.String externalDNSName)	Sets the value of the ExternalDNSName attribute.
void	setHostnameVerificationIgnored(boolean ignoreFlag)	Sets the value of the HostnameVerificationIgnored attribute.
void	setHostnameVerifier(java.lang.String classname)	Sets the value of the HostnameVerifier attribute.
void	setHttpEnabledForThisProtocol(boolean enabled)	Sets the value of the HttpEnabledForThisProtocol attribute.
void	setIdleConnectionTimeout(int seconds)	Sets the value of the IdleConnectionTimeout attribute.
void	setIdleIIOPConnectionTimeout(int seconds)	Sets the value of the IdleIIOPConnectionTimeout attribute.
void	setInboundCertificateValidation(java.lang.String validationStyle)	Sets the value of the InboundCertificateValidation attribute.
void	setListenAddress(java.lang.String address)	Sets the value of the ListenAddress attribute.
void	setListenPort(int port)	Sets the value of the ListenPort attribute.
void	setLoginTimeoutMillis(int timeout)	Sets the value of the LoginTimeoutMillis attribute.
void	setLoginTimeoutMillisSSL(int millis)	Sets the value of the LoginTimeoutMillisSSL attribute.
void	setMaxBackoffBetweenFailures(int milliSeconds)	Sets the value of the MaxBackoffBetweenFailures attribute.
void	setMaxConnectedClients(int count)	Sets the value of the MaxConnectedClients attribute.
void	setMaxMessageSize(int maxsize)	Sets the value of the MaxMessageSize attribute.
void	setMinimumTLSProtocolVersion(java.lang.String minimumTLSProtocolVersion)	Set the minimum SSL/TLS protocol version
void	setName(java.lang.String name)	Sets the value of the Name attribute.
void	setOutboundCertificateValidation(java.lang.String validationStyle)	Sets the value of the OutboundCertificateValidation attribute.
void	setOutboundEnabled(boolean enabled)	Sets the value of the OutboundEnabled attribute.
void	setOutboundPrivateKeyEnabled(boolean enabled)	Sets the value of the OutboundPrivateKeyEnabled attribute.
void	setProtocol(java.lang.String protocol)	Sets the value of the Protocol attribute.
void	setProxyAddress(java.lang.String address)	Sets the value of the ProxyAddress attribute.
void	setProxyPort(int port)	Sets the value of the ProxyPort attribute.
void	setPublicAddress(java.lang.String address)	Sets the value of the PublicAddress attribute.
void	setPublicPort(int port)	Sets the value of the PublicPort attribute.
void	setResolveDNSName(boolean flag)	Sets the value of the ResolveDNSName attribute.
void	setSDPEnabled(boolean enable)	Deprecated. 14.1.1.0.0
void	setServerCipherSuitesOrderEnabled(boolean serverCipherSuitesOrderEnabled)	Sets whether to honor the server cipher suites preference.
void	setSSLListenPort(int port)	Sets the value of the SLListenPort attribute.
void	setTimeoutConnectionWithPendingResponses(boolean timeout)	Sets the value of the TimeoutConnectionWithPendingResponses attribute.
void	setTunnelingClientPingSecs(int secs)	Sets the value of the TunnelingClientPingSecs attribute.
void	setTunnelingClientTimeoutSecs(int secs)	Sets the value of the TunnelingClientTimeoutSecs attribute.
void	setTunnelingEnabled(boolean enabled)	Sets the value of the TunnelingEnabled attribute.
void	setTwoWaySSLEnabled(boolean enabled)	Sets the value of the TwoWaySSLEnabled attribute.
void	setUseFastSerialization(boolean enabled)	Sets the value of the UseFastSerialization attribute.

Methods inherited from interface weblogic.management.configuration.ConfigurationMBean

freezeCurrentValue, getId, getInheritedProperties, getNotes, isDynamicallyCreated, isInherited, isSet, restoreDefaultValue, setComments, setDefaultedMBean, setNotes, setPersistenceEnabled, unSet

Methods inherited from interface weblogic.descriptor.DescriptorBean

addPropertyChangeListener, createChildCopyIncludingObsolete, getParentBean, isEditable, removePropertyChangeListener

Methods inherited from interface javax.management.DynamicMBean

getAttribute, getAttributes, invoke, setAttribute, setAttributes

Methods inherited from interface javax.management.MBeanRegistration

postDeregister, postRegister, preDeregister, preRegister

Methods inherited from interface javax.management.NotificationBroadcaster

addNotificationListener, getNotificationInfo, removeNotificationListener

Methods inherited from interface weblogic.management.WebLogicMBean

getMBeanInfo, getObjectName, getParent, getType, isCachingDisabled, isRegistered, setParent

Method Detail

getName

java.lang.String getName()

The name of this network channel.

Specified by:

getName in interface ConfigurationMBean

Specified by:

getName in interface WebLogicMBean

Returns:

The name value

Default Value:

""

setName

void setName(java.lang.String name)
      throws javax.management.InvalidAttributeValueException

Sets the value of the Name attribute.

Specified by:

setName in interface ConfigurationMBean

Specified by:

setName in interface WebLogicMBean

Parameters:

name - The new name value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getName()

Changes to this property take effect after you redeploy the module or restart the server. If the resource is in a partition, restart the partition.

getProtocol

java.lang.String getProtocol()

The protocol this network channel should use for connections.

Returns:

The protocol value

Default Value:

"t3"

setProtocol

void setProtocol(java.lang.String protocol)
          throws javax.management.InvalidAttributeValueException

Sets the value of the Protocol attribute.

Parameters:

protocol - The new protocol value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getProtocol()

Changes to this property take effect after you redeploy the module or restart the server. If the resource is in a partition, restart the partition.

getListenAddress

java.lang.String getListenAddress()

The IP address or DNS name this network channel uses to listen for incoming connections. A value of null indicates that the network channel should obtain this value from the server's configuration.

Returns:

The listenAddress value

See Also:

ServerTemplateMBean.getListenAddress()

setListenAddress

void setListenAddress(java.lang.String address)
               throws javax.management.InvalidAttributeValueException

Sets the value of the ListenAddress attribute.

Parameters:

address - The new listenAddress value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getListenAddress()

Changes to this property take effect after you redeploy the module or restart the server. If the resource is in a partition, restart the partition.

getPublicAddress

java.lang.String getPublicAddress()

The IP address or DNS name representing the external identity of this network channel. A value of null indicates that the network channel's Listen Address is also its external address. If the Listen Address is null,the network channel obtains its external identity from the server's configuration.

This is required for the configurations which need to cross a firewall doing Network Address Translation.

Returns:

The publicAddress value

See Also:

getExternalDNSName(), getListenAddress(), ServerTemplateMBean.getListenAddress()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setPublicAddress

void setPublicAddress(java.lang.String address)
               throws javax.management.InvalidAttributeValueException

Sets the value of the PublicAddress attribute.

Parameters:

address - The new publicAddress value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getPublicAddress()

getListenPort

int getListenPort()

The default TCP port this network channel uses to listen for regular (non-SSL) incoming connections. A value of -1 indicates that the network channel should obtain this value from the server's configuration.

Returns:

The listenPort value

See Also:

ServerTemplateMBean.getListenPort()

setListenPort

void setListenPort(int port)
            throws javax.management.InvalidAttributeValueException

Sets the value of the ListenPort attribute.

Parameters:

port - The new listenPort value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getListenPort()

Changes to this property take effect after you redeploy the module or restart the server. If the resource is in a partition, restart the partition.

getPublicPort

int getPublicPort()

The externally published listen port for this network channel. A value of -1 indicates that the network channel's Listen Port is also its public listen port. If the Listen Port is -1,the network channel obtains its public listen port from the server's configuration.

Returns:

The publicPort value

See Also:

getListenPort(), ServerTemplateMBean.getListenPort()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setPublicPort

void setPublicPort(int port)
            throws javax.management.InvalidAttributeValueException

Sets the value of the PublicPort attribute.

Parameters:

port - The new publicPort value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getPublicPort()

getResolveDNSName

boolean getResolveDNSName()

Resolve the listen address to use for all T3 communication

Returns:

The resolveDNSName value

See Also:

getListenAddress(), getPublicAddress()

Default Value:

false

setResolveDNSName

void setResolveDNSName(boolean flag)

Sets the value of the ResolveDNSName attribute.

Parameters:

flag - The new resolveDNSName value

See Also:

getResolveDNSName()

getProxyAddress

java.lang.String getProxyAddress()

The IP address or DNS name of the HTTP proxy to use for outbound connections on this channel. The HTTP proxy must support the CONNECT tunneling command.

This option is only effective when OutboundEnabled is set on the channel.

Returns:

The proxyAddress value

Default Value:

null

setProxyAddress

void setProxyAddress(java.lang.String address)
              throws javax.management.InvalidAttributeValueException

Sets the value of the ProxyAddress attribute.

Parameters:

address - The new proxyAddress value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getProxyAddress()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getProxyPort

int getProxyPort()

The port of the HTTP proxy to use for outbound connections on this channel. The HTTP proxy must support the CONNECT tunneling command.

This option is only effective when OutboundEnabled and ProxyHost are set on the channel.

Returns:

The proxyPort value

Default Value:

80

setProxyPort

void setProxyPort(int port)
           throws javax.management.InvalidAttributeValueException

Sets the value of the ProxyPort attribute.

Parameters:

port - The new proxyPort value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getProxyPort()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

isHttpEnabledForThisProtocol

boolean isHttpEnabledForThisProtocol()

Specifies whether HTTP traffic should be allowed over this network channel.

HTTP is generally required by binary protocols for downloading stubs and other resources.

Returns:

The httpEnabledForThisProtocol value

Default Value:

true

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setHttpEnabledForThisProtocol

void setHttpEnabledForThisProtocol(boolean enabled)
                            throws javax.management.InvalidAttributeValueException

Sets the value of the HttpEnabledForThisProtocol attribute.

Parameters:

enabled - The new httpEnabledForThisProtocol value

Throws:

javax.management.InvalidAttributeValueException

See Also:

isHttpEnabledForThisProtocol()

getAcceptBacklog

int getAcceptBacklog()

The number of backlogged, new TCP connection requests that this network channel allows. A value of -1 indicates that the network channel obtains its backlog configuration from the server's configuration.

Returns:

The acceptBacklog value

See Also:

ServerTemplateMBean.getAcceptBacklog()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Minimum Value:

0

setAcceptBacklog

void setAcceptBacklog(int count)
               throws javax.management.InvalidAttributeValueException

Sets the value of the AcceptBacklog attribute.

Parameters:

count - The new acceptBacklog value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getAcceptBacklog()

getMaxBackoffBetweenFailures

int getMaxBackoffBetweenFailures()

The maximum back off time between failures while accepting client connections. -1 implies that this value is inherited from the server.

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Minimum Value:

0

setMaxBackoffBetweenFailures

void setMaxBackoffBetweenFailures(int milliSeconds)
                           throws javax.management.InvalidAttributeValueException

Sets the value of the MaxBackoffBetweenFailures attribute.

Throws:

javax.management.InvalidAttributeValueException

See Also:

getMaxBackoffBetweenFailures()

getLoginTimeoutMillis

int getLoginTimeoutMillis()

The amount of time that this network channel should wait for a connection before timing out. A value of 0 disables network channel login timeout. A value of -1 indicates that the network channel obtains this timeout value from the server's configuration.

Returns:

The loginTimeoutMillis value

See Also:

ServerTemplateMBean.getLoginTimeoutMillis()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Maximum Value:

100000

Minimum Value:

0

setLoginTimeoutMillis

void setLoginTimeoutMillis(int timeout)
                    throws javax.management.InvalidAttributeValueException,
                           DistributedManagementException

Sets the value of the LoginTimeoutMillis attribute.

Parameters:

timeout - The new loginTimeoutMillis value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

getTunnelingClientPingSecs

int getTunnelingClientPingSecs()

The interval (in seconds) at which this network channel should ping an HTTP-tunneled client to see if its still alive. A value of -1 indicates that the network channel obtains this interval from the ServerTemplateMBean. (Requires you to enable tunneling for the network channel.)

Returns:

The tunnelingClientPingSecs value

See Also:

ServerTemplateMBean.getTunnelingClientPingSecs(), isTunnelingEnabled()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Minimum Value:

1

setTunnelingClientPingSecs

void setTunnelingClientPingSecs(int secs)
                         throws javax.management.InvalidAttributeValueException

Sets the value of the TunnelingClientPingSecs attribute.

Parameters:

secs - The new tunnelingClientPingSecs value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getTunnelingClientPingSecs()

getTunnelingClientTimeoutSecs

int getTunnelingClientTimeoutSecs()

The amount of time (in seconds) after which this network channel considers a missing HTTP-tunneled client to be dead. A value of -1 indicates that the network channel obtains this timeout value from the ServerTemplateMBean. (Requires you to enable tunneling for the network channel.)

Returns:

The tunnelingClientTimeoutSecs value

See Also:

ServerTemplateMBean.getTunnelingClientTimeoutSecs(), isTunnelingEnabled()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Minimum Value:

1

setTunnelingClientTimeoutSecs

void setTunnelingClientTimeoutSecs(int secs)
                            throws javax.management.InvalidAttributeValueException

Sets the value of the TunnelingClientTimeoutSecs attribute.

Parameters:

secs - The new tunnelingClientTimeoutSecs value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getTunnelingClientTimeoutSecs()

isTunnelingEnabled

boolean isTunnelingEnabled()

Specifies whether tunneling via HTTP should be enabled for this network channel. This value is not inherited from the server's configuration.

Returns:

The tunnelingEnabled value

Default Value:

false

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setTunnelingEnabled

void setTunnelingEnabled(boolean enabled)
                  throws javax.management.InvalidAttributeValueException

Sets the value of the TunnelingEnabled attribute.

Parameters:

enabled - The new tunnelingEnabled value

Throws:

javax.management.InvalidAttributeValueException

See Also:

isTunnelingEnabled()

getCompleteMessageTimeout

int getCompleteMessageTimeout()

The maximum amount of time this network channel waits for a complete message to be received. A value of 0 disables network channel complete message timeout. A value of -1 indicates that the network channel obtains this timeout value from the ServerTemplateMBean.

This timeout helps guard against denial of service attacks in which a caller indicates that they will be sending a message of a certain size which they never finish sending.

Returns:

The completeMessageTimeout value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Maximum Value:

480

Minimum Value:

0

setCompleteMessageTimeout

void setCompleteMessageTimeout(int seconds)
                        throws javax.management.InvalidAttributeValueException,
                               DistributedManagementException

Sets the value of the CompleteMessageTimeout attribute.

Parameters:

seconds - The new completeMessageTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getCompleteMessageTimeout()

getTimeoutConnectionWithPendingResponses

boolean getTimeoutConnectionWithPendingResponses()

Determines if connections with pending responses are allowed to timeout. It defaults to false. If set to true, the connection will be timed out for this channel if it exceeds the idleConnectionTimeout value.

Note: This setting only applies to IIOP connections.

Returns:

Whether or not to timeout connections with pending responses

Default Value:

false

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setTimeoutConnectionWithPendingResponses

void setTimeoutConnectionWithPendingResponses(boolean timeout)
                                       throws javax.management.InvalidAttributeValueException,
                                              DistributedManagementException

Sets the value of the TimeoutConnectionWithPendingResponses attribute.

Parameters:

timeout - Whether or not to timeout connections with pending responses

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getTimeoutConnectionWithPendingResponses()

getIdleConnectionTimeout

int getIdleConnectionTimeout()

The maximum amount of time (in seconds) that a connection is allowed to be idle before it is closed by this network channel. A value of -1 indicates that the network channel obtains this timeout value from the ServerTemplateMBean.

This timeout helps guard against server deadlock through too many open connections.

Returns:

The idleConnectionTimeout value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Minimum Value:

0

setIdleConnectionTimeout

void setIdleConnectionTimeout(int seconds)
                       throws javax.management.InvalidAttributeValueException,
                              DistributedManagementException

Sets the value of the IdleConnectionTimeout attribute.

Parameters:

seconds - The new idleConnectionTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getIdleConnectionTimeout()

getConnectTimeout

int getConnectTimeout()

The amount of time that this network channel should wait to establish an outbound socket connection before timing out. A value of 0 disables network channel connect timeout.

Returns:

The connectTimeout value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Maximum Value:

240

Minimum Value:

0

setConnectTimeout

void setConnectTimeout(int timeout)
                throws javax.management.InvalidAttributeValueException,
                       DistributedManagementException

Sets the value of the ConnectTimeout attribute.

Parameters:

timeout - The new connectTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

getMaxMessageSize

int getMaxMessageSize()

The maximum message size allowable in a message header.

This maximum attempts to prevent a denial of service attack whereby a caller attempts to force the server to allocate more memory than is available thereby keeping the server from responding quickly to other requests.

A client can set this value using the -Dweblogic.MaxMessageSize property.

Returns:

The maxMessageSize value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Maximum Value:

100000000

Minimum Value:

4096

setMaxMessageSize

void setMaxMessageSize(int maxsize)
                throws javax.management.InvalidAttributeValueException,
                       DistributedManagementException

Sets the value of the MaxMessageSize attribute.

Parameters:

maxsize - The new maxMessageSize value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getMaxMessageSize()

isOutboundEnabled

boolean isOutboundEnabled()

Specifies whether new server-to-server connections may consider this network channel when initiating a connection. This is only relevant if the connection needs to be bound to the network channel's listen address. This will only work for binary protocols that support both outbound and inbound traffic.

When this feature is not enabled, connections are initiated using a local address selected by the underlying hardware.

The default is false.

Outbound channels are selected at runtime either by virtue of the fact of being the only outbound-enabled channel for the required protocol, or by name in weblogic.jndi.Environment#setProviderChannel.

The HTTP protocol is implicitly enabled for all the outbound channels, but you need to use the WLS client library (HTTP client) and set the channel on the connection.

Returns:

The OutboundEnabled value

See Also:

HttpURLConnection.setSocketFactory(javax.net.SocketFactory)

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setOutboundEnabled

void setOutboundEnabled(boolean enabled)
                 throws javax.management.InvalidAttributeValueException

Sets the value of the OutboundEnabled attribute.

Parameters:

enabled - The new outboundEnabled value

Throws:

javax.management.InvalidAttributeValueException

See Also:

isOutboundEnabled()

getChannelWeight

int getChannelWeight()

A weight to give this channel when creating server-to-server connections.

Returns:

The channelWeight value

Default Value:

50

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Maximum Value:

100

Minimum Value:

1

setChannelWeight

void setChannelWeight(int weight)
               throws javax.management.InvalidAttributeValueException

Sets the value of the ChannelWeight attribute.

Parameters:

weight - The new channelWeight value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getChannelWeight()

getClusterAddress

java.lang.String getClusterAddress()

The address this network channel uses to generate EJB handles and failover addresses for use in a cluster. This value is determined according to the following order of precedence:

1. If the cluster address is specified via the NAPMBean, then that value is used
2. If this value is not specified, the value of PublicAddress is used.
3. If PublicAddress is not set, this value is derive from the ClusterAddress attribute of the ClusterMbean.
4. If ClusterMbean.clusterAddress is not set, this value is derive from the listen address of the NAPMbean.

Returns:

The clusterAddress value

See Also:

getPublicAddress(), ClusterMBean.getClusterAddress()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setClusterAddress

void setClusterAddress(java.lang.String address)
                throws javax.management.InvalidAttributeValueException

Sets the value of the ClusterAddress attribute.

Parameters:

address - The new clusterAddress value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getClusterAddress()

isEnabled

boolean isEnabled()

Specifies whether this channel should be started.

Returns:

The enabled value

Default Value:

true

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setEnabled

void setEnabled(boolean enabled)
         throws javax.management.InvalidAttributeValueException

Sets the value of the Enabled attribute.

Parameters:

enabled - The new enabled value

Throws:

javax.management.InvalidAttributeValueException

See Also:

isEnabled()

getMaxConnectedClients

int getMaxConnectedClients()

The maximum number of clients that can be connected on this network channel.

Returns:

The max connected count value

Default Value:

java.lang.Integer.MAX_VALUE

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setMaxConnectedClients

void setMaxConnectedClients(int count)
                     throws javax.management.InvalidAttributeValueException

Sets the value of the MaxConnectedClients attribute.

Parameters:

count - The new count value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getMaxConnectedClients()

isTwoWaySSLEnabled

boolean isTwoWaySSLEnabled()

Specifies whether this network channel uses two way SSL.

Returns:

The TwoWaySSLEnabled value

Default Value:

false

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setTwoWaySSLEnabled

void setTwoWaySSLEnabled(boolean enabled)

Sets the value of the TwoWaySSLEnabled attribute.

Parameters:

enabled - The new twoWaySSLEnabled value

See Also:

isTwoWaySSLEnabled()

isChannelIdentityCustomized

boolean isChannelIdentityCustomized()

Whether or not the channel's custom identity should be used. This setting only has an effect if the server is using a customized keystore. By default the channel's identity is inherited from the server's identity.

Returns:

The ChannelIdentityCustomzied value

See Also:

SSLMBean.getServerPrivateKeyAlias(), getCustomPrivateKeyAlias()

Default Value:

false

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setChannelIdentityCustomized

void setChannelIdentityCustomized(boolean val)

Sets the value of the ChannelIdentityCustomized attribute.

Parameters:

val - The new ChannelIdentityCustomzied value

See Also:

isChannelIdentityCustomized()

getCustomPrivateKeyAlias

java.lang.String getCustomPrivateKeyAlias()

The string alias used to store and retrieve the channel's private key in the keystore. This private key is associated with the server's digital certificate. A value of null indicates that the network channel uses the alias specified in the server's SSL configuration.

Returns:

The CustomPrivateKeyAlias value

See Also:

SSLMBean.getServerPrivateKeyAlias()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomPrivateKeyAlias

void setCustomPrivateKeyAlias(java.lang.String alias)

Sets the value of the PrivateKeyAlias attribute.

Parameters:

alias - The new PrivateKeyAlias value

See Also:

getCustomPrivateKeyAlias()

getPrivateKeyAlias

java.lang.String getPrivateKeyAlias()

The string alias used to store and retrieve the channel's private key in the keystore. This private key is associated with the server's digital certificate. This value is derived from other settings on the channel and cannot be physically set.

Returns:

The PrivateKeyAlias value

See Also:

SSLMBean.getServerPrivateKeyAlias(), getCustomPrivateKeyAlias()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getCustomPrivateKeyPassPhrase

java.lang.String getCustomPrivateKeyPassPhrase()

The passphrase used to retrieve the server's private key from the keystore. This passphrase is assigned to the private key when it is generated. A value of null indicates that the network channel uses the pass phrase specified in the server's SSL configuration.

Returns:

The CustomPrivateKeyPassPhrase value

See Also:

SSLMBean.getServerPrivateKeyPassPhrase()

Default Value:

null

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomPrivateKeyPassPhrase

void setCustomPrivateKeyPassPhrase(java.lang.String phrase)

Sets the value of the PrivateKeyPassPhrase attribute.

Parameters:

phrase - The new PrivateKeyPassPhrase value

See Also:

getCustomPrivateKeyPassPhrase()

getPrivateKeyPassPhrase

java.lang.String getPrivateKeyPassPhrase()

The passphrase used to retrieve the server's private key from the keystore. This passphrase is assigned to the private key when it is generated. This value is derived from other settings on the channel and cannot be physically set.

Returns:

The PrivateKeyPassPhrase value

See Also:

SSLMBean.getServerPrivateKeyPassPhrase(), getCustomPrivateKeyPassPhrase()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getCustomPrivateKeyPassPhraseEncrypted

byte[] getCustomPrivateKeyPassPhraseEncrypted()

The encrypted form of passphrase used to retrieve the server's private key from the keystore.

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomPrivateKeyPassPhraseEncrypted

void setCustomPrivateKeyPassPhraseEncrypted(byte[] passwordEncrypted)

Sets the encrypted value of the PrivateKeyPassPhrase attribute.

Parameters:

passwordEncrypted -

isClientCertificateEnforced

boolean isClientCertificateEnforced()

Specifies whether clients must present digital certificates from a trusted certificate authority to WebLogic Server on this channel.

Returns:

The ClientCertificateEnforced value

Default Value:

false

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setClientCertificateEnforced

void setClientCertificateEnforced(boolean enforce)

Sets the value of the ClientCertificateEnabled attribute.

Parameters:

enforce - The new ClientCertificateEnforced value

See Also:

isClientCertificateEnforced()

isOutboundPrivateKeyEnabled

boolean isOutboundPrivateKeyEnabled()

Specifies whether the identity specified by getCustomPrivateKeyAlias() should be used for outbound SSL connections on this channel. In normal circumstances the outbound identity is determined by the caller's environment.

Returns:

The OutboundPrivateKeyEnabled value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setOutboundPrivateKeyEnabled

void setOutboundPrivateKeyEnabled(boolean enabled)
                           throws javax.management.InvalidAttributeValueException

Sets the value of the OutboundPrivateKeyEnabled attribute.

Parameters:

enabled - The new outboundEnabled value

Throws:

javax.management.InvalidAttributeValueException

See Also:

isOutboundEnabled()

getUseFastSerialization

boolean getUseFastSerialization()

Specifies whether to use non-standard object serialization for performance. This option works in different ways for different protocols. In particular under IIOP this option uses Java serialization rather than RMI-IIOP serialization. In general using non-standard serialization is not suitable for interop scenarios and may imply some feature loss.

Returns:

The UseFastSerialization value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setUseFastSerialization

void setUseFastSerialization(boolean enabled)
                      throws javax.management.InvalidAttributeValueException

Sets the value of the UseFastSerialization attribute.

Parameters:

enabled - The new UseFastSerialization value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getUseFastSerialization()

setIdleIIOPConnectionTimeout

void setIdleIIOPConnectionTimeout(int seconds)
                           throws javax.management.InvalidAttributeValueException,
                                  DistributedManagementException

Sets the value of the IdleIIOPConnectionTimeout attribute.

Parameters:

seconds - The new idleIIOPConnectionTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getIdleIIOPConnectionTimeout()

setSSLListenPort

void setSSLListenPort(int port)
               throws javax.management.InvalidAttributeValueException

Sets the value of the SLListenPort attribute.

Parameters:

port - The new sSLListenPort value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getSSLListenPort()

setExternalDNSName

void setExternalDNSName(java.lang.String externalDNSName)
                 throws javax.management.InvalidAttributeValueException

Sets the value of the ExternalDNSName attribute.

Parameters:

externalDNSName - The new externalDNSName value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getExternalDNSName()

setLoginTimeoutMillisSSL

void setLoginTimeoutMillisSSL(int millis)
                       throws javax.management.InvalidAttributeValueException

Sets the value of the LoginTimeoutMillisSSL attribute.

Parameters:

millis - The new loginTimeoutMillisSSL value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getLoginTimeoutMillisSSL()

setCompleteT3MessageTimeout

void setCompleteT3MessageTimeout(int seconds)
                          throws javax.management.InvalidAttributeValueException,
                                 DistributedManagementException

Sets the value of the CompleteT3MessageTimeout attribute.

Parameters:

seconds - The new completeT3MessageTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getCompleteT3MessageTimeout()

setCompleteHTTPMessageTimeout

void setCompleteHTTPMessageTimeout(int seconds)
                            throws javax.management.InvalidAttributeValueException,
                                   DistributedManagementException

Sets the value of the CompleteHTTPMessageTimeout attribute.

Parameters:

seconds - The new completeHTTPMessageTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getCompleteHTTPMessageTimeout()

setCompleteCOMMessageTimeout

void setCompleteCOMMessageTimeout(int seconds)
                           throws javax.management.InvalidAttributeValueException,
                                  DistributedManagementException

Sets the value of the CompleteCOMMessageTimeout attribute.

Parameters:

seconds - The new completeCOMMessageTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getCompleteCOMMessageTimeout()

setCompleteIIOPMessageTimeout

void setCompleteIIOPMessageTimeout(int seconds)
                            throws javax.management.InvalidAttributeValueException,
                                   DistributedManagementException

Sets the value of the CompleteIIOPMessageTimeout attribute.

Parameters:

seconds - The new completeIIOPMessageTimeout value

Throws:

javax.management.InvalidAttributeValueException

DistributedManagementException

See Also:

getCompleteIIOPMessageTimeout()

isSDPEnabled

@Deprecated
boolean isSDPEnabled()

Deprecated.

14.1.1.0.0

Enables Socket Direct Protocol (SDP) on this channel. Enable this attribute when configuring session replication enhancements for Managed Servers in a WebLogic cluster for Oracle Exalogic. SDP is removed from JDK11.

Default Value:

false

Changes to this property take effect after you redeploy the module or restart the server. If the resource is in a partition, restart the partition.

setSDPEnabled

@Deprecated
void setSDPEnabled(boolean enable)

Deprecated.

14.1.1.0.0

Set whether the channel should be using SDP protocol. SDP is removed from JDK11.

Default Value:

false

Changes to this property take effect after you redeploy the module or restart the server. If the resource is in a partition, restart the partition.

getOutboundPrivateKeyAlias

java.lang.String getOutboundPrivateKeyAlias()

The string alias used to store and retrieve the outbound private key in the keystore. This private key is associated with either a server or a client digital certificate. This attribute value is derived from other settings and cannot be physically set.

The returned value is determined as follows:

• If isOutboundPrivateKeyEnabled() and isChannelIdentityCustomized() return true, the value from getCustomPrivateKeyAlias() is returned.
• Otherwise, the value from SSLMBean.getOutboundPrivateKeyAlias() is returned from the ServerMBean for the channel.

Returns:

The OutboundPrivateKeyAlias value

See Also:

isOutboundPrivateKeyEnabled(), isChannelIdentityCustomized(), getCustomPrivateKeyAlias(), SSLMBean.getOutboundPrivateKeyAlias()

Default Value:

null

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getOutboundPrivateKeyPassPhrase

java.lang.String getOutboundPrivateKeyPassPhrase()

The passphrase used to retrieve the outbound private key from the keystore. This passphrase is assigned to the private key when it is generated. This attribute value is derived from other settings and cannot be physically set.

The returned value is determined as follows:

• If isOutboundPrivateKeyEnabled() and isChannelIdentityCustomized() return true, the value from getCustomPrivateKeyPassPhrase() is returned.
• Otherwise, the value from SSLMBean.getOutboundPrivateKeyPassPhrase() is returned from the ServerMBean for the channel.

See Also:

isOutboundPrivateKeyEnabled(), isChannelIdentityCustomized(), getCustomPrivateKeyPassPhrase(), SSLMBean.getOutboundPrivateKeyPassPhrase()

Default Value:

null

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getCustomIdentityKeyStoreFileName

java.lang.String getCustomIdentityKeyStoreFileName()

The source of the identity keystore. For a JKS keystore, the source is the path and file name. For an Oracle Key Store Service (KSS) keystore, the source is the KSS URI.

If using a JKS keystore, the keystore path name must either be absolute or relative to where the server was booted.

If using a KSS keystore, the keystore URI must be of the form:

kss://system/keystorename

where keystorename is the name of the keystore registered in KSS.

The value in this attribute is only used if ServerMBean.KeyStores is CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST, CUSTOM_IDENTITY_AND_CUSTOM_TRUST or CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST.

Returns:

The customIdentityKeyStoreFileName value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomIdentityKeyStoreFileName

void setCustomIdentityKeyStoreFileName(java.lang.String fileName)

Sets the value of the CustomIdentityKeyStoreFileName attribute.

Parameters:

fileName - The new customIdentityKeyStoreFileName value

See Also:

getCustomIdentityKeyStoreFileName()

getCustomIdentityKeyStoreType

java.lang.String getCustomIdentityKeyStoreType()

The type of the keystore. Generally, this is JKS. If using the Oracle Key Store Service, this would be KSS

If empty or null, then the JDK's default keystore type (specified in java.security) is used. The custom identity key store type is only used if ServerMBean.KeyStores is CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST, CUSTOM_IDENTITY_AND_CUSTOM_TRUST or CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST.

Returns:

The customIdentityKeyStoreType value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomIdentityKeyStoreType

void setCustomIdentityKeyStoreType(java.lang.String type)

Sets the value of the CustomIdentityKeyStoreType attribute.

Parameters:

type - The new customIdentityKeyStoreType value

See Also:

getCustomIdentityKeyStoreType()

getCustomIdentityKeyStorePassPhrase

java.lang.String getCustomIdentityKeyStorePassPhrase()

The encrypted custom identity keystore's passphrase. If empty or null, then the keystore will be opened without a passphrase.

This attribute is only used if ServerMBean.KeyStores is CUSTOM_IDENTITY_AND_JAVA_STANDARD_TRUST, CUSTOM_IDENTITY_AND_CUSTOM_TRUST or CUSTOM_IDENTITY_AND_COMMAND_LINE_TRUST.

When you get the value of this attribute, WebLogic Server does the following:

1. Retrieves the value of the CustomIdentityKeyStorePassPhraseEncrypted attribute.
2. Decrypts the value and returns the unencrypted password as a String.

When you set the value of this attribute, WebLogic Server does the following:

1. Encrypts the value.
2. Sets the value of the CustomIdentityKeyStorePassPhraseEncrypted attribute to the encrypted value.

Using this attribute (CustomIdentityKeyStorePassPhrase) is a potential security risk because the String object (which contains the unencrypted password) remains in the JVM's memory until garbage collection removes it and the memory is reallocated. Depending on how memory is allocated in the JVM, a significant amount of time could pass before this unencrypted data is removed from memory.

Instead of using this attribute, use CustomIdentityKeyStorePassPhraseEncrypted.

Returns:

The customIdentityKeyStorePassPhrase value

See Also:

getCustomIdentityKeyStorePassPhraseEncrypted()

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomIdentityKeyStorePassPhrase

void setCustomIdentityKeyStorePassPhrase(java.lang.String passPhrase)

Sets the value of the CustomIdentityKeyStorePassPhrase attribute.

Parameters:

passPhrase - The new customIdentityKeyStorePassPhrase value

See Also:

getCustomIdentityKeyStorePassPhrase(), setCustomIdentityKeyStorePassPhraseEncrypted(byte[])

getCustomIdentityKeyStorePassPhraseEncrypted

byte[] getCustomIdentityKeyStorePassPhraseEncrypted()

Returns encrypted pass phrase defined when creating the keystore.

Returns:

The encrypted customIdentityKeyStorePassPhrase value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCustomIdentityKeyStorePassPhraseEncrypted

void setCustomIdentityKeyStorePassPhraseEncrypted(byte[] passPhraseEncrypted)

Sets the encrypted value of the CustomIdentityKeyStorePassPhrase attribute.

Parameters:

passPhraseEncrypted - The new encrypted customIdentityKeyStorePassPhrase value

See Also:

getCustomIdentityKeyStorePassPhraseEncrypted()

getHostnameVerifier

java.lang.String getHostnameVerifier()

The name of the class that implements the weblogic.security.SSL.HostnameVerifier interface.

This class verifies whether the connection to the host with the hostname from URL should be allowed. The class is used to prevent man-in-the-middle attacks. The weblogic.security.SSL.HostnameVerifier has a verify() method that WebLogic Server calls on the client during the SSL handshake.

Returns:

The hostnameVerifier value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setHostnameVerifier

void setHostnameVerifier(java.lang.String classname)
                  throws javax.management.InvalidAttributeValueException

Sets the value of the HostnameVerifier attribute.

Parameters:

classname - The new hostnameVerifier value

Throws:

javax.management.InvalidAttributeValueException

See Also:

getHostnameVerifier()

isHostnameVerificationIgnored

boolean isHostnameVerificationIgnored()

Specifies whether to ignore the installed implementation of the weblogic.security.SSL.HostnameVerifier interface (when this server is acting as a client to another application server).

Returns:

The hostnameVerificationIgnored value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setHostnameVerificationIgnored

void setHostnameVerificationIgnored(boolean ignoreFlag)
                             throws javax.management.InvalidAttributeValueException

Sets the value of the HostnameVerificationIgnored attribute.

Parameters:

ignoreFlag - The new hostnameVerificationIgnored value

Throws:

javax.management.InvalidAttributeValueException

See Also:

isHostnameVerificationIgnored()

getCiphersuites

java.lang.String[] getCiphersuites()

Indicates the cipher suites being used on a particular WebLogic Server channel.

The strongest negotiated cipher suite is chosen during the SSL handshake. The set of cipher suites used by default by JSEE depends on the specific JDK version with which WebLogic Server is configured.

For a list of possible values, see Cipher Suites .

Returns:

The ciphersuites value

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setCiphersuites

void setCiphersuites(java.lang.String[] ciphers)
              throws javax.management.InvalidAttributeValueException

Sets the value of the Ciphersuites attribute.

Parameters:

ciphers - The new ciphersuites value

Throws:

javax.management.InvalidAttributeValueException - if the array is null or contains null elements.

See Also:

getCiphersuites()

getExcludedCiphersuites

java.lang.String[] getExcludedCiphersuites()

List of cipher suites not to be used by WebLogic Server.

Returns:

The excluded ciphersuites

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setExcludedCiphersuites

void setExcludedCiphersuites(java.lang.String[] excludedCiphersuites)

Sets the value of the ExcludedCiphersuites attribute.

Parameters:

excludedCiphersuites - The new list of excluded ciphersuites

See Also:

getExcludedCiphersuites()

setAllowUnencryptedNullCipher

void setAllowUnencryptedNullCipher(boolean enable)

When a SSL server and a SSL client try to negotiate a commonly supported Cipher, there is a chance that they may end up with nothing in common. A NullCipher is a cipher providing no encryption for the SSL message between the client and server, and it may temporarily be used in the development environment if the SSL server and client share no common cipher for some reason. This is not a standard SSL feature, some SSL provider supports this feature

The AllowUnEncryptedNullCipher flag is used to control whether the NullCipher feature is enabled or not. If true, the SSL message may be unencrypted when SSL server and client shares no common cipher.

This AllowUnEncryptedNullCipher flag is only effective to SSL providers which support the NullCipher feature.

Warning: this NullCipher feature should NOT be enabled for a production environment, it may lead to unencrypted SSL message

By default, the AllowUnEncryptedNullCipher is false

Parameters:

enable - true to allow NullCipher feature

isAllowUnencryptedNullCipher

boolean isAllowUnencryptedNullCipher()

Test if the AllowUnEncryptedNullCipher is enabled

see setAllowUnencryptedNullCipher(boolean enable) for the NullCipher feature.

Returns:

true if NullCipher feature is allowed.

See Also:

setAllowUnencryptedNullCipher(boolean)

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getInboundCertificateValidation

java.lang.String getInboundCertificateValidation()

Indicates the client certificate validation rules for inbound SSL.

This attribute only applies to ports and network channels using 2-way SSL.

Returns:

a String containing the validation style.

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Valid Values:

SSLMBean.BUILTIN_SSL_VALIDATION_ONLY, SSLMBean.BUILTIN_SSL_VALIDATION_AND_CERT_PATH_VALIDATORS

setInboundCertificateValidation

void setInboundCertificateValidation(java.lang.String validationStyle)

Sets the value of the InboundCertificateValidation attribute.

Parameters:

validationStyle - the new validation style

See Also:

getInboundCertificateValidation()

getOutboundCertificateValidation

java.lang.String getOutboundCertificateValidation()

Indicates the server certificate validation rules for outbound SSL.

This attribute always applies to outbound SSL that is part of WebLogic Server (that is, an Administration Server talking to the Node Manager). It does not apply to application code in the server that is using outbound SSL unless the application code uses a weblogic.security.SSL.ServerTrustManager that is configured to use outbound SSL validation.

Returns:

a String containing the validation style.

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

Valid Values:

SSLMBean.BUILTIN_SSL_VALIDATION_ONLY, SSLMBean.BUILTIN_SSL_VALIDATION_AND_CERT_PATH_VALIDATORS

setOutboundCertificateValidation

void setOutboundCertificateValidation(java.lang.String validationStyle)

Sets the value of the OutboundCertificateValidation attribute.

Parameters:

validationStyle - the new validation style

See Also:

getOutboundCertificateValidation()

getMinimumTLSProtocolVersion

java.lang.String getMinimumTLSProtocolVersion()

Get the minimum SSL/TLS protocol version to be used in a network channel.

Returns:

the minimum TLS protocol version

See Also:

setMinimumTLSProtocolVersion(String)

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setMinimumTLSProtocolVersion

void setMinimumTLSProtocolVersion(java.lang.String minimumTLSProtocolVersion)
                           throws javax.management.InvalidAttributeValueException

Set the minimum SSL/TLS protocol version

Parameters:

minimumTLSProtocolVersion - the new minimum SSL/TLS protocol version

Throws:

javax.management.InvalidAttributeValueException

isSSLv2HelloEnabled

boolean isSSLv2HelloEnabled()

Indicate whether SSLv2Hello is enabled in a network channel.

Returns:

whether SSLv2Hello is enabled(only applicable if the configured JSSE provider supports SSLv2Hello).

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

isClientInitSecureRenegotiationAccepted

boolean isClientInitSecureRenegotiationAccepted()

Deprecated.

14.1.2.0.0 We recommend you use the JDK RFC 5746: TLS Renegotiation Extension instead

Indicate whether TLS client initiated secure renegotiation is accepted.

Returns:

whether TLS client initiated secure renegotiation is accepted by the TLS server. This setting is ignored if the system property -Djdk.tls.rejectClientInitiatedRenegotiation is configured.

Default Value:

false

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

getAllowListViolationAction

java.lang.String getAllowListViolationAction()

Get the value of AllowListViolationAction attribute used with JEP 290 filtering. The default value is obtained from the domain allow list configuration.

Returns:

the AllowListViolationAction .

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

isServerCipherSuitesOrderEnabled

boolean isServerCipherSuitesOrderEnabled()

Indicates whether to honor the server cipher suites preference.

Returns:

See Also:

SSLParameters.getUseCipherSuitesOrder()

Default Value:

true

Changes to this property are dynamic and thus take effect immediately without restarting the server or partition.

setServerCipherSuitesOrderEnabled

void setServerCipherSuitesOrderEnabled(boolean serverCipherSuitesOrderEnabled)

Sets whether to honor the server cipher suites preference.

Parameters:

serverCipherSuitesOrderEnabled -

See Also:

SSLParameters.setUseCipherSuitesOrder(boolean)