Certificate Verification

You can verify that your certificates are present in the Oracle® Session Delivery Management Cloud (Oracle SDM Cloud), in the keystore, and you can perform a certificate-based connection test.

• Verify Certificate Presence

  Within the Oracle SDM Cloud, navigate to Tools, Certificates and confirm that the correct certificate is listed.

• Verify that the Certificate was Imported to the Keystore

  From the Management Cloud Engine (MCE) container, use the following command to list the contents of

  AcpKeyAndCertStore(/opt/mce/transport/tls).

   /opt/mce/java/bin/keytool -list -keystore ACPKeyAndCertStore -v | grep Alias (from mce container)

  Confirm the certificate's Alias name matches.

• Perform a Certificate-Based Connection Test
  If the certificate alias is in the keystore, you can export it for CURL testing using the following command:

  /opt/mce/java/bin/keytool -exportcert -rfc -alias <ALIAS_NAME> -keystore /opt/mce/Transport/tls/ACPKeyAndCertStore -file cacert.pem

  Inside the container use CURL to the device's port 3000, specifying your device certificate.

  curl -v -k https://<device-ip>:3000/ --cacert cacert.pem

  The message SSL certificate verify ok displays confirming a successful TLS handshake and that the certificate is verified.