Enabling SSL or TLS in Oracle E-Business Suite Release 12
>> Backup context file
echo $CONTEXT_FILE
/U01/appl/PREP/inst/apps/PREP_weberp/appl/admin/PREP_weberp.xml
cd /U01/appl/PREP/inst/apps/PREP_weberp/appl/admin
cp PREP_weberp.xml PREP_weberp_15FEB15.xml
Step 2 - Create a wallet
1. Navigate to the $INST_TOP/certs/Apache directory.
2. Move the existing wallet files to a backup directory in case you wish to use them again in the future.
3. Open the Wallet manager as a background process:
owm &
4. On the Oracle Wallet Manager Menu navigate to Wallet -> New.
Answer NO to: “Your default wallet directory doesn't exist. Do you wish to create it now?”
The new wallet screen will now prompt you to enter a password for your wallet.
Click YES when prompted:
“A new empty wallet has been created. Do you wish to create a certificate request at this time?”
>> Backup context file
echo $CONTEXT_FILE
/U01/appl/PREP/inst/apps/PREP_weberp/appl/admin/PREP_weberp.xml
cd /U01/appl/PREP/inst/apps/PREP_weberp/appl/admin
cp PREP_weberp.xml PREP_weberp_15FEB15.xml
Step 1 - Set Your Environment
1. Logon to the application middle tier as the OS user who owns the middle tier files.
2. Source your middle tier environment file (APPS<sid_machine>.env) located in the APPL_TOP directory.
3. Navigate to the $INST_TOP/ora/10.1.3 and source the <sid_machine>.env file to set your 10.1.3
ORACLE_HOME variables.
[root@weberp ~]# su - appl
[appl@weberp ~]$ cd $INST_TOP/ora/10.1.3
[appl@weberp 10.1.3]$ pwd
/U01/appl/PREP/inst/apps/PREP_weberp/ora/10.1.3
[appl@weberp 10.1.3]$ ls
Apache config j2ee network PREP_weberp.env
cfgtoollogs deconfig javacache opmn
1. Logon to the application middle tier as the OS user who owns the middle tier files.
2. Source your middle tier environment file (APPS<sid_machine>.env) located in the APPL_TOP directory.
3. Navigate to the $INST_TOP/ora/10.1.3 and source the <sid_machine>.env file to set your 10.1.3
ORACLE_HOME variables.
[root@weberp ~]# su - appl
[appl@weberp ~]$ cd $INST_TOP/ora/10.1.3
[appl@weberp 10.1.3]$ pwd
/U01/appl/PREP/inst/apps/PREP_weberp/ora/10.1.3
[appl@weberp 10.1.3]$ ls
Apache config j2ee network PREP_weberp.env
cfgtoollogs deconfig javacache opmn
Go to $INST_TOP
/U01/appl/PREP/inst/apps/PREP_weberp
Take backup of certs folder
/U01/appl/PREP/inst/apps/PREP_weberp
Take backup of certs folder
Step 2 - Create a wallet
1. Navigate to the $INST_TOP/certs/Apache directory.
2. Move the existing wallet files to a backup directory in case you wish to use them again in the future.
3. Open the Wallet manager as a background process:
owm &
4. On the Oracle Wallet Manager Menu navigate to Wallet -> New.
Answer NO to: “Your default wallet directory doesn't exist. Do you wish to create it now?”
The new wallet screen will now prompt you to enter a password for your wallet.
Click YES when prompted:
“A new empty wallet has been created. Do you wish to create a certificate request at this time?”
ENTER 'NO'
CREATE WALLET PASSWORD
eg. test123
PRESS 'YES'
Step 3 - Create a Certificate Request
After clicking "Yes" in step 2 the Create Certificate Request Screen will pop up:
Fill in the appropriate values where:
Common Name: is the name of your server including the domain.
Organizational Unit: (optional) The unit within your organization.
.
Organization: is the name of your organization.
Locality/City: is your locality or city.
State/Province: is the full name of your State or Province - do not abbreviate.
Select your Country from the drop down list, and for the Key Size, select 2048 as a minimum. Click OK.
Step 3 - Create a Certificate Request
After clicking "Yes" in step 2 the Create Certificate Request Screen will pop up:
Fill in the appropriate values where:
Common Name: is the name of your server including the domain.
Organizational Unit: (optional) The unit within your organization.
.
Organization: is the name of your organization.
Locality/City: is your locality or city.
State/Province: is the full name of your State or Province - do not abbreviate.
Select your Country from the drop down list, and for the Key Size, select 2048 as a minimum. Click OK.
Step 4 - Submit the Certificate Request to a Certifying Authority
You will need to export the Certificate Request before you can submit it to a Certifying Authority.
1. Click on Certificate [Requested] to Highlight it.
2. From the menu click Operations -> Export Certificate Request
3. Save the file as server.csr
4. From the menu click Wallet and then click Save.
5. On the Select Directory screen change the Directory to your fully qualified wallet directory.
6. Click OK.
7. From the menu click Wallet and check the Auto Login box.
Be sure to make this password something you will remember. You will need to use the password whenever you open the wallet with Oracle Wallet Manager or perform operations on the wallet using the Command Line Interface. With a uto login enabled processes submitted by the OS user who created the wallet will not need to supply the password to access the wallet.
8. Exit the Wallet Manager.
The wallet directory will now contain the following files:
• cwallet.sso
• ewallet.p12
• server.csr
You may now submit server.csr to your Certifying Authority to request a Server Certificate.
You will need to export the Certificate Request before you can submit it to a Certifying Authority.
1. Click on Certificate [Requested] to Highlight it.
2. From the menu click Operations -> Export Certificate Request
3. Save the file as server.csr
4. From the menu click Wallet and then click Save.
5. On the Select Directory screen change the Directory to your fully qualified wallet directory.
6. Click OK.
7. From the menu click Wallet and check the Auto Login box.
Be sure to make this password something you will remember. You will need to use the password whenever you open the wallet with Oracle Wallet Manager or perform operations on the wallet using the Command Line Interface. With a uto login enabled processes submitted by the OS user who created the wallet will not need to supply the password to access the wallet.
8. Exit the Wallet Manager.
The wallet directory will now contain the following files:
• cwallet.sso
• ewallet.p12
• server.csr
You may now submit server.csr to your Certifying Authority to request a Server Certificate.
Change path to save file
From the menu click Wallet and check the Auto Login box.
b64InternetCertificate.txt file location
/U01/appl/PREP/apps/tech_st/10.1.2/sysman/config
/U01/appl/PREP/apps/tech_st/10.1.2/sysman/config
