A Enabling SSL for HTTPS

This appendix provides the needed instructions if you choose HTTPS as the protocol to establish a connection between HP ServiceCenter and Enterprise Manager.

Generating and Importing a Certificate Request

Do the following to generate and then import the certificate:

  1. Generate a certificate request file for HP ServiceCenter and send it to the Certificate authority, such as VeriSign.

    Note:

    The certificate request file is dependent on the Web server that HP ServiceCenter uses.
  2. After you get the certificate, import it to the Web server that HP ServiceCenter uses. The import mechanism varies depending on the Web server that the HP ServiceCenter uses.

Installing and Configuring SSL

For information about installing and configuring SSL, see the following documentation:

  • Trusted Sign-On Authentication in HP ServiceCenter 6.1 and Greater Versions

  • Best Practices for Publishing and Consuming Web Services with HP ServiceCenter

  • HP ServiceCenter Installation Guide

Adding Signed Certificates to Wallet Manager

Oracle Wallet Manager is available at $ORACLE_HOME/bin on OMS. See the Oracle Application Server Administrator's Guide for details.

Do the following in Enterprise Manager to add signed certificates to Wallet Manager:

  1. As Super Administrator, create a wallet using the following orapki utility command at the OMS host:

    orapki wallet create -wallet client -auto_login

    orapki is available at $ORACLE_HOME/bin on OMS.

  2. Add the trusted certificate to the wallet by entering the following command:

    orapki wallet add -wallet client -trusted_cert -cert verisignCert.cer

  3. To view the content of the wallet, enter the following command:

    orapki wallet display -wallet client

    Ensure that ewallet.p12 is available.

  4. In Oracle Wallet Manager, open the ewallet.p12 client certificate.

  5. Go to Select Trusted Certificates and select Operations on the main menu.

  6. Select Export All Trusted Certificates.

  7. Save the file as certdb.txt.

  8. Place the file certdb.txt in the connector home root directory ($OMS_HOME/sysman/connector).

    If the file certdb.txt already exists in the root directory, open the file and add the contents of your certdb.txt to the existing content.

Java SSL can now use this file for communication between Enterprise Manager and ServiceCenter in HTTPS mode.

Note:

The certificate request file is dependent on the Web server ServiceCenter uses.

See Also:

For information on creating a wallet, see "Creating and Viewing Oracle Wallets with orapki" in the Oracle Database Advanced Security Administrator's Guide, 10g Release 2 (10.2).