To verify the authenticity of the configured Endpoint URL, Oracle ILOM requires a local copy of a valid SSL Certificate.
For direct ASR Service Endpoint connections (https://transport.oracle.com), Oracle ILOM provides (pre-installed) an SSL Certificate. If necessary, the Oracle-provided SSL Certificate can be replaced with a user-provided SSL Certificate.
For indirect ASR Service Endpoint connections, a user-provided SSL Certificate must be uploaded to Oracle ILOM.
For details on how to load or remove an SSL Certificate, see the following instructions.
Web: Select the Strict Certificate Mode checkbox in the General Settings section of the ASR Client page.
CLI: Type the following command string:
set /SP/clients/asr/ strictcertmode=disabled|enabled
To view the SSL Certificate:
Web: In the Certificate Information section, view the Certificate File Status. If the status shows the certificate is present, click the (details) link for further certificate details.
CLI: Type:
show /SP/clients/asr/cert cert_status
If status shows the certificate is present, type the following to view the certificate details:
show /SP/clients/asr/cert
To load the SSL Certificate:
Web: In the Certificate Information section, select a Transfer Method, provide the required information, and then click Load Certificate.
For more details, see Supported File Transfer Methods.
CLI: Under the /SP/clients/asr/cert target, type:
load_uri=file_transfer_method://password@host/file_path/filename
Where: The supported file_transfer_method can be one of the following: ftp, tftp, ftp, sftp, scp, http, https
To remove the SSL Certificate:
Web: In the Certificate Information section, click Remove Certificate.
A message appears indicating that the certificate was removed.
CLI: Under the /SP/Clients/asr/cert target, type:
set /SP/clients/asr/cert clear_action=true
When prompted, type y to continue the action or n to cancel the action.