Oracle® Health Sciences Information Gateway Installation Guide Release 1.2 E22757-01 |
|
|
PDF · Mobi · ePub |
This chapter provides the instructions for completing the installation of the OHMPI VM, Policy Engine VM, or Health Record Locator VM self-signed certificates for the OHIG Adapter and the OHIG Gateway.
This chapter includes the following sections:
Navigate to and run the script /home/hiauser/config/scripts/create-and-import-selfsigned-certs.sh
to install the self-signed certificate. It does the following things:
Creates the keystore for the private internal key
Exports the certificate that will authenticate the internal key
Imports the trusted certificates into the truststore
Provides these certificates to appserver
to use for authentication purposes
> sh create-and-import-selfsigned-certs.sh
Install the certificates from the other components that will communicate with the Adapter (Gateway, OHMPI, Record Locator, Policy Engine, and so on). Copy the certificate of the component VM <VM_HOSTNAME.cer>
to the /home/hiauser/SUNWappserver/domains/domain1/config
folder. Navigate to and run the scripts /home/hiauser/config/scripts/import-others-cert.sh
. When prompted by the scripts, enter the VM hostname (it should match with the cert file you copied to the config
folder without ".cer" suffix).
>bash import-others-cert.sh
Navigate to and run the script home/hiauser/config/scripts/create-and-import-selfsigned-certs.sh
to install the self-signed certificate. It does the following things:
Creates the keystore for the private internal key
Exports the certificate that will authenticate the internal key
Imports the trusted certificates into the truststore
Provides these certificates to appserver
to use for authentication purposes
> sh create-and-import-selfsigned-certs.sh
Install the Adapter VM certificate. Copy the certificate of Adapter VM <ADAPTER_ VM_HOSTNAME.cer>
to the /home/hiauser/SUNWappserver/domains/domain1/config
folder. Navigate to and run the scripts /home/hiauser/config/scripts/import-others-cert.sh
. When prompted by the scripts, enter the Adapter VM hostname (it should match with the cert file you copied to the config folder without ".cer" suffix).
>bash import-others-cert.sh
To avoid a java.security.cert.CertificateException
you need to ensure that your OHIG hostnames are not fully qualified.
To Make the Hostname Not Fully Qualified
Set the OHIM and OHIG hostnames to be not fully qualified.
Add aliases for all hosts.
Regenerate and re-import the certificates.
Restart all the servers.
Test that you do not have a Java security certificate exception.