Before you install and use the Oracle VM Utilities, you must first enable secure TCP (TCPS) on the Oracle VM Manager host. To do this, you must first create an SSL certificate keystore, then enable TCPS using the keystore.
To create a certificate keystore:
Enter the following commands on the Oracle VM Manager host to create the keystore:
# cd /u01/app/oracle/ovm-manager-3/bin # ./secureOvmmTcpGenKeyStore.sh
You are prompted to enter the following information:
Generate OVMM TCP over SSL key store by following steps: Enter keystore password:
password
Re-enter new password:password
What is your first and last name? [Unknown]:name
What is the name of your organizational unit? [Unknown]:unit
What is the name of your organization? [Unknown]:organization
What is the name of your City or Locality? [Unknown]:City
What is the name of your State or Province? [Unknown]:State
What is the two-letter country code for this unit? [Unknown]:country_code
Is CN=name
, OU=unit
, O=organization
, L=City
, ST=State
, C=country_code
correct? [no]:yes
Enter key password for <ovmm> (RETURN if same as keystore password):password
Re-enter new password:password
Use the keystore to enable the TCPS service using the
secureOvmmTcp.sh
script, which is in the same directory as the keystore script above. On the Oracle VM Manager host, enter:# ./secureOvmmTcp.sh
You are prompted to enter the following information:
Enabling OVMM TCP over SSL service Please enter the OVM manager user name:
username
Please enter the OVM manager user password:password
Please enter the password for TCPS key store :password
The keystore password created in the previous script The job of enabling OVMM TCPS service is committed, please restart OVMM to take effect.Restart the local Oracle VM Manager instance:
# /sbin/service ovmm restart