Manage Security Certificates During Design Time

Certificates are used to validate external web service connections for an application when message security is applied. If an external endpoint requires a specific certificate, request the certificate and upload it into Oracle Integration. An expired certificate results in a process instance error.

You can maintain separate certificates in design time and runtime, and you can override credentials during activation. This flexibility enables your organization to maintain separate certificates for test activation and production activation environments.

To configure message security and credentials:

Enable message security for a web service connector, as described in Apply Message Security to Integrations.
Certificate and credential fields display when security is enabled by selecting the APP Id - Username Token With Message Protection option in the connector’s Advanced Security field.
Specify a keystore credential and a certificate alias for the connector.
- If needed, create a new certificate alias and upload a certificate by selecting a certificate file or pasting certificate contents.
- If needed, create a new keystore credential and enter a name, user name, and password.
Manage credentials as needed. See Configure Credentials for Web Services.
Manage certificates as needed. You can use any of the following methods to manage certificates.

To...	Follow these steps...
Manage certificates during design time	In the Oracle Integration navigation pane, click Processes, and then click Process Applications. Click Activate. Click Options for your server and select Manage Certificates. The Test tab displays information, such as alias and expiration date, for the design-time certificates uploaded in the design-time environment. The Server tab includes a Manage Certificates link. Runtime certificates are managed centrally for processes and integrations. See Manage Security Certificates during Runtime. Add or delete certificates.
Override certificates when you activate an application	In the Oracle Integration navigation pane, click Processes, and then click Process Applications. Click Activate. Click Options for your server and select Activate. Enter information about the application you want to activate, and then go to the Customize page. Use the options on the Customize page to specify services and security information. Select the Use design-time credentials and certificates check box to select from design-time certificates created during design time rather than runtime. Deselect the field to display and select from run-time credentials and certificates.
Update and manage runtime certificates	In the Oracle Integration navigation pane, select Settings, then Certificates. Create, upload, update, and delete certificates. See Manage Security Certificates during Runtime.