3.3.3.3.1.1 <PrivateKey>

When using an Oracle wallet, specify the location of a directory that contains an Oracle Wallet.

Note:

SALT does not have the concept of a security principal name like Oracle Tuxedo does, so the Wallet is located in the specified directory and not in a sub-directory.

To configure server identity certificates (SALT deploy configuration file <PrivateKey> element ), it is required that the root certificate authority be present in the SSL configuration file. Proper configuration is:

• root CA certificate
• intermediate certificate(s) (if any)
• server certificate
• server private key
• in PEM format.

When using the legacy security credentials format, specifies the PEM format private key file. The key file path is specified as the text value for this element. The server certificate is also stored in this private key file. The value of this element may contain a maximum of 256 characters (excluding the terminating NULL character).

With either security credential format, the password for the Oracle Wallet or the GWWS private key file is specifed in the TUXCONFIG file using the SEC_PRINCIPAL_PASSVAR="environment_variable_name" parameter. The TUXCONFIG file must also set the SEC_PRINCIPAL_NAME="any_non-null_string(not_used)" parameter so that SEC_PRINCIPAL_PASSVAR will be properly processed in the configuration file.

This element is mandatory if the parent <Certificate> element is configured.