5 Enabling SSL for HTTPS
Follow the steps provided in this section if you choose HTTPS as the protocol to establish a connection between the external ticketing system and Enterprise Manager.
Generating a Certificate Request File
Generate a certificate request file for the external ticketing system and send it to the Certificate authority, such as VeriSign.
Note:
The certificate request file is dependent on the Web server used by the external ticketing system.
Importing the Certificate from the Certificate Authority
After you get the certificate, import it to the Web server the external ticketing system uses. The import mechanism varies depending on the Web server the external ticketing system uses.
Note:
Make sure https://<webserver>:port
is enabled and working on the external ticketing system.
Importing the Server Certificate on Enterprise Manager
Import the Server certificate (the certificate you got from Certificate Authority) using the following steps:
-
Append the external Certificate Authority's certificate to:
$INSTANCE_HOME/sysman/config/b64LocalCertificate.txt
-
Ensure that only the following is appended to the
b64LocalCertificate.txt
file (that is, do not include blank lines or comments or any other special characters):-----BEGIN CERTIFICATE----- <<<Certificate in Base64 format>>> -----END CERTIFICATE-----
-
Restart the OMS. Run the following commands:
emctl stop oms emctl start oms
Note:
Do not run the
emctl secure oms/agent
command after adding the external certificate to theb64LocalCertificate.txt
file. If you run theemctl secure
command later, then repeat the steps 1 through 3 to make sure the external certificate exists on theb64certificate.txt
file.