SSL Certificates for LBaaS

LBaaS requires the use of secure certificates. You must supply a certificate to use standard SSL for the LBs and their resources. You can upload SSL certificates if none are available.

Note:

Oracle recommends that you upload the certificates you want to use before you create the listeners or backend sets you want to associate them with.

Oracle Private Cloud Appliance LBaaS doesn't generate SSL certificates. It can only import an existing certificate that you already own. The certificate can be one issued by a vendor, such as Verisign or GoDaddy. You can also use a self-signed certificate that you generate with an open source tool, such as OpenSSL or Let's Encrypt. Refer to the corresponding tool's documentation for instructions on how to generate a self-signed certificate.

If you submit a self-signed certificate for backend SSL, you must submit the same certificate in the corresponding CA Certificate field.

Oracle Private Cloud Appliance accepts x.509 type certificates in PEM format only. The following is an example PEM encoded certificate:

-----BEGIN CERTIFICATE-----

<Base64_encoded_certificate>

-----END CERTIFICATE-----

For more information about certificates for LBaaS, see "SSL Certificates" in the Load Balancer as a Service chapter in the Oracle Private Cloud Appliance User Guide.