View SSL Certificates
From the Configuration Assistant homepage, click SSL Certificates.
The SSL certificate opens.
The SSL Certificates window shows SSL entitlements, the status of installed certificates, and the selection menus to further manage individual certificates.
You can view the SSL Certificate details for any of the listed SSL Certificates.
On the SSL Certificates window, click the menu icon for the appropriate site and select View Details.
Generate a Certificate Signing Request
It is important that the information provided when generating the CSR in Configuration Assistant is the same as that given to the third-party certificate vendor when requesting the certificate.
From the SSL Certificates page, click Generate CSR.The Generate Certificate Signing Request (CSR) window opens.
Complete the following field information:
Table Generate Certificate Signing Request
Enter a fully qualified domain name (FQDN) or the web address for the area of your site customers will connect to using SSL.
Vhost (Subject Alternative Names)
Enter the list of your SANs..
OrganizationEnter the legal name of your organization.Note: Do not use symbols & or @ or any other symbols that use the shift key. Organizational Unit
Enter the certificate management division of your organization.
Enter the city where your organization is located.
Enter the state where your organization is located.
Enter the two-letter ISO country code where your organization is located.
Click Create to generate the CSR.Once the CSR is generated, the certificate status changes to Cert Needed.
Download a Certificate Signing Request
You can manage SSL certificates, including downloading a CSR, from the Configuration Assistant.
You can download a CSR from the SSL Certificates page. You need to click the menu icon and select Download CSR.
Upload an SSL Certificate
You can manage your SSL certificates, which can include uploading an SSL certificate.
From the SSL Certificates page, click the menu icon and then select Upload Certificate.The Upload SSL Certificate opens.
On the Upload SSL Certificate window, click Browse and select the appropriate certificate.
Click Upload.An Information window opens confirming the certificate was uploaded. Once the certificate is uploaded, the certificate status changes to Provisioned.Note: Once a certificate is provisioned, the menu icon changes to include both Activate and Delete options. Keep in mind you can’t delete activated certificates.
Activate an SSL Certificate
Prior to activation, the DNS Administrator must change the CNAME record. Contact your DNS Administrator to put a CNAME entry in your DNS server that points to the appropriate domain. For example, example_domain.com IN CNAME example.custhelp.com
The activation will not be allowed if DNS is not properly configured by your DNS Administrator.
You must use a CNAME and not an A record for redundancy and reliability. Oracle Cloud Operations recommends customers create CNAME records to link customer-owned, branded domains to the custhelp domain(s) provided within the default CX application.
The use of CNAME records is a powerful and flexible solution that allows the underlying Oracle IP address to change if necessary without requiring customers to update their DNS. Our customers report the best experience when using CNAME records over A records.
From the SSL Certificates page, click the menu icon and then select Activate.The Activate SSL Certificate window opens.
From the SSL Requirement drop-down list, select the SSL type that has to be installed.
Requirement Types Description
Requests to HTTP and HTTPS behave normally.
Requests to HTTPS are accepted but requests to HTTP are rejected.
SSL Redirect Requests to HTTP are automatically redirected to HTTPS.
Select the interface from which the certificate is to be activated from the Interface Configuration list.
Type the domain name in the Vhost (Alternate Vhost Name) field, and then click Activate.An Information window confirms activation. The certificate status changes to Active.
Renew an Existing SSL Certificate
You can manage your SSL certificate using Configuration Assistant.
From the SSL Certificates home page, click the menu icon for the service you wish to renew the certificate.
If the certificate status for the service is still active, select Request Renew CSR.The request is processed instantly. A new CSR appears in the SSL certificates list with the same name. This is the CSR generated to renew the existing certificate. Once complete, the certificate status changes to Provisioned or Cert Needed.
From the SSL Certificates home page, select Download Renewed Certificate option to download the renewed CSR. You can find this option on the renewed CSR’s menu icon.Note: You must purchase or renew the certificate from DigiCert or your preferred, publicly trusted Certificate Authority with this renewed CSR.
From the service’s menu icon on the SSL Certificates home page, select Upload Renewed Certificate .An Upload SSL window appears.
Click Choose File and select the renewed .csr file.
Once the renewed certificate is uploaded, the certificate status changes to Provisioned.
From the service’s menu icon on the SSL Certificates home page, select Activate Renewed Certificate .A Confirm Activate Renewed Certificate window appears.
Click Activate. An Information window appears confirming the certificate was successfully activated.
View Subscription Details
The Subscriptions page displays customer subscriptions and details, including the start and end dates of the subscription and all components that are part of the respective subscription.
To view the subscription details, click Subscriptions from the Configuration Assistant Home Page.