Bookshelf Home | Contents | Index | PDF |
Siebel Security Guide > Communications and Data Encryption > About Certificates and Key Files Used for SSL AuthenticationWhen you configure SSL authentication for a Siebel Enterprise, Siebel Server, or SWSE, you specify parameter values that indicate the names of certificate files, certificate authority files, and private key files on the computers that host these components. The certificate files you use for this purpose can be issued by and obtained from third-party certificate authorities. Certificate authority files identify the third-party certificate authority who issued the certificate. Certificate files must adhere to the following requirements:
Certificate files and private key files are typically installed on each computer that hosts a component or module for which you configure SSL, such as a Siebel Server or SWSE. You do not have to authenticate or encrypt communications between components on the same computer. For information on installing certificate files, see Installing Certificate Files. About Supported Values for SSL Certificate Encryption KeysA certificate authority certifies ownership of the public and private key pairs that are used to encrypt and decrypt SSL communications. Messages are encrypted with the public key and decrypted with the private key. The certificate key size refers to the size, in bits, of the encryption key provided with the certificate. In general, for SSL authentication for a Siebel Enterprise, Siebel Server, or SWSE, Siebel Business Applications support certificates that use an encryption key size of 1024 bits. If you require a higher encryption key size, you must install the Siebel Strong Encryption Pack. However, the size of the certificate key supported depends on the components for which you are configuring SSL communications. Table 5 shows the certificate key sizes supported for SSL communications between different components in a Siebel Business Applications deployment.
Increasing the Certificate Key Sizes Supported For SISNAPI CommunicationsIn general, for SSL authentication for Siebel Enterprise, Siebel Server, or SWSE communications, Siebel Business Applications support certificates that use an encryption key size of 1024 bits. If you want to use certificates with encryption key sizes larger than 1024 bits, perform the steps in the following procedure. To increase the certificate key sizes supported for SISNAPI communications
If your version of the Siebel Strong Encryption Pack does not include the sslcnapi128 file, create a service request (SR) on My Oracle Support. Alternatively, you can phone Oracle Global Customer Support directly to create a service request or get a status update on your current SR. Support phone numbers are listed on My Oracle Support. |
Siebel Security Guide | Copyright © 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices. | |