Renew or Replace Default SSL certificates of OHS with signed certificates from CA

I have came across a requirement in my project where I need to renew the existing SSL certificates of OHS. Same steps can also be used in case of replacing the default SSL certificates. Below are the major steps which needs to be done;

1. Open Oracle Wallet Manager GUI and create an empty wallet.

2. Create certificate request by adding certificate to that wallet. It will ask for many details but most important is common name which is the server name and can be found in httpd.conf file.

3. After wallet is created with Export that wallet and it will act as CSR (certificate signing request) which needs to be send to CA (certificate authority).

4. Once CA approves then signed certificates will be given by CA. Import those certificates using OWM in the above created wallet.

5. Save the wallet as cwallet.sso file in <instance_home>/config/OHS/<instance_name> directory.

6. Update the new wallet created above in OHS config files i.e. httpd.conf and ssl.conf files.

7. Restart OHS.

Advertisements

About Rahul Jain

Working as an Integration consultant AIA/SOA with around 6 years of experience in integrating, designing, developing software applications. I integrated multiple telecom solutions that include customer relationship management, Billing, Inventory management and order provisioning management system. I am Oracle SOA certified and OCA certified consultant. I am having primary experience in implementing solutions using AIA, SOA, BPEL, ESB and Product Hub for comms. Attended trainings on other Fusion Middleware products OBPMN 11g, SOA suite 11g. Involve in different phases of software Development Viz. analysis, designing, coding and testing of Modules. Also involved in implementing Oracle solution for Telco for maintaining the product catalog i.e. Oracle Product Hub for communications and integrating Oracle Product Hub with CRM and Billing applications. Using this Telco companies can maintain a single repository of all products and then publish these products to end systems with one click. Currently working on integrating Oracle EPPM Primavera with SOA/BPM/ implementation.
This entry was posted in CA, certficates, OHS, OWM, SSL and tagged , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s