Configure a TLS Connection Between the On-Premises Connector on Your Host Machine and an Autonomous AI Database on Exadata Cloud@Customer Database

You need to configure a TLS connection between the Oracle Data Safe on-premises connector on your host machine and Autonomous AI Database on Exadata Cloud@Customer.

Perform the following steps only once per Exadata Cloud@Customer cluster:

1. Download the Autonomous AI Database wallet.
2. Export the database server certificate by running the following command. For -dn <db server DN>, enter the first part of the database scan name, which you can find in the tnsnames.ora file. For <database server certificate file>, enter the location where you want to store the certificate (the command below creates the certificate).

   orapki wallet export -wallet <database wallet location> -dn <db server DN> -cert <database server certificate file>

3. For the first pluggable database (PDB) in the Exadata Cloud@Customer cluster (and only the first PDB - not the remaining PDBs in the cluster), import the database server certificate into the on-premises connector wallet. To do this, run the following command, and when prompted, enter the wallet password. The wallet password is the password that you created when you downloaded and installed the install bundle.

   orapki wallet add -wallet <on-premises connector wallet location> -trusted_cert -cert <database server certificate file>