Administration Server

The Administration Server is the central point from which you manage your domain. You can access the Administration Server by using the URL protocol://listen-address:listen-port. This is the network channel for the Administration Server. Note that the network channel for each Administration Server must be unique. The protocol can be any of the following: t3, t3s, http, https.

From this screen, you can configure or change the following Administration Server settings.

Field/Option	Description
Server Name	The default name is AdminServer. Valid server names are a string of characters (alphabetic and numeric). Each server instance in a production environment must have a unique name, regardless of the domain or cluster in which it resides, and regardless of whether it is an Administration Server or a Managed Server. The name of the Administration Server must be unique among all component names within the WebLogic domain. This value is specified only for identification purposes. It is not used as part of the URL for applications that are deployed on the server. The server name is displayed in the WebLogic Server Administration Console. If you use WebLogic Server command-line utilities or APIs, you must specify this name to identify the server.
Listen address	From the drop-down list, select a value for the listen address. For more information, see Specifying the Listen Address.
Listen port	Enter a valid value for the listen port to be used for regular, nonsecure requests (through protocols such as HTTP and T3). The default value is 7001 for the Administration Server. If you leave this field blank, the default value is used. The valid listen port range is from 1 to 65535. For more information, see Specifying the Listen Port.
Enable SSL	Select this check box to enable the SSL listen port. By default, SSL is disabled for all new servers.
SSL listen port	This field is enabled only if you selected the SSL enabled check box. Enter a valid value to be used for secure requests (through protocols such as HTTPS and T3S). The default value is 7002. If you leave this field blank, the default value is used. The valid listen port range is from 1 to 65535. By default, a server instance uses demonstration certificates to authenticate requests from a secure port. In a production environment, you must configure SSL to use certificates from a certificate authority. More
Server Groups	This drop-down list is displayed only if at least one selected template defines a user-expandable server group. You have the option to assign a user-expandable server group to the Administration Server, causing all application service groups that are defined for that server group to be assigned to the Administration Server. More

Specifying the Listen Address

This section provides guidelines for specifying the listen address for the Administration Server. These guidelines also apply to all Managed Servers.

If you select localhost as the listen address for a server instance, remote processes cannot connect to that server instance. Only processes on the machine that hosts the server instance can connect to the server instance. If the server instance must be accessible as localhost (for example, if you create administrative scripts that connect to localhost), and it must also be accessible by remote processes, select All Local Addresses. The server instance determines the address of the machine and listens on it.

The following table describes the behavior of each listen address type.

Type	Description
All Local Addresses or a DNS name	On multi-homed Windows machines, a server instance binds to all available IP addresses.
An IP address or a DNS name	When using an IP address or DNS name To connect to the server instance, processes can specify either the IP address or the corresponding DNS name Processes that specify localhost fail to connect You must update existing processes that use localhost to connect to the server instance For connections that specify the IP address for the listen address and a secured port for the listen port, host name verification must be disabled. Note: To resolve a DNS name to an IP address, WebLogic Server must be able to contact an appropriate DNS server or obtain the IP address mapping locally. Therefore, if you specify a DNS name for the listen address, you must either leave a port open long enough for the WebLogic Server instance to connect to a DNS server and cache its mapping or you must specify the IP address mapping in a local file. If you specify an IP address for the listen address, and a client request then specifies a DNS name, WebLogic Server attempts to resolve the DNS name. If it cannot access DNS name mapping, the request fails.
localhost	When using localhost Processes must specify localhost to connect to the server instance Only processes that reside on the machine that hosts the server instance (local processes) can connect to the server instance.

Type

Description

All Local Addresses or a DNS name

On multi-homed Windows machines, a server instance binds to all available IP addresses.

An IP address or a DNS name

When using an IP address or DNS name

To connect to the server instance, processes can specify either the IP address or the corresponding DNS name
Processes that specify localhost fail to connect
You must update existing processes that use localhost to connect to the server instance
For connections that specify the IP address for the listen address and a secured port for the listen port, host name verification must be disabled.

Note: To resolve a DNS name to an IP address, WebLogic Server must be able to contact an appropriate DNS server or obtain the IP address mapping locally. Therefore, if you specify a DNS name for the listen address, you must either leave a port open long enough for the WebLogic Server instance to connect to a DNS server and cache its mapping or you must specify the IP address mapping in a local file. If you specify an IP address for the listen address, and a client request then specifies a DNS name, WebLogic Server attempts to resolve the DNS name. If it cannot access DNS name mapping, the request fails.

localhost

When using localhost

Processes must specify localhost to connect to the server instance
Only processes that reside on the machine that hosts the server instance (local processes) can connect to the server instance.

Specifying the Listen Port

Note the following guidelines when specifying the listen port for the Administration Server. These guidelines also apply to Managed Servers.

Although you can specify any valid port number, if you specify port 80, you can omit the port number from the HTTP request used to access resources over HTTP. For example, if you define port 80 as the listen port, you can use the URL http://hostname/myfile.html instead of http://hostname:portnumber/myfile.html.
On some operating systems, port 80 can be accessed only by processes run under a privileged user or group ID. In this case, you can assign the server instance to a UNIX machine on which a post-bind UID or GID is defined.

"Configuring SSL" in Administering Security for Oracle WebLogic Server