Enable Internal SSL
Follow these steps to enable SSL on internal communication links.
You must run commands from the primary host. Oracle Analytics Server must have been configured by the BI configuration assistant, WebLogic managed servers must have been created, and any scaling out must be complete. Only use this procedure if you have configured security using the configuration assistant.
If you used the Configuration Template for SSL, see Enabling SSL in a Configuration Template Configured System.
You can configure the following advance options:
-
Enable server checking of client certificates.
-
Specify cipher suite to use.
Post conditions:
Post-conditions
-
WebLogic servers:
-
Have HTTPS listener enabled on internal channels.
-
The external port configuration is unaltered. See Enable End-to-End SSL for how to enable SSL on the external ports as well.
There is a separate internal identity (key/certificate pair) for each listener address. The certificate has a common name matching the listening address, which is compatible with standard HTTPS practice. The certificates are signed by the internal certificate authority.
-
-
System components, other than Essbase Studio:
-
Enable an HTTPS listener on internal channels.
-
The external port configuration is unaltered.
-
There is a separate internal identity (key or certificate pair) for each listener address. The certificate has a common name matching the listening address, which is compatible with standard HTTPS practice. The certificates are signed by the internal certificate authority.
-
-
Essbase Studio:
-
No change. Continues with existing connectivity.
-