4 Adding Trusted Certificate for SIMPLE and CERT Mode communication
To add a trusted certificate for SIMPLE and CERT mode communication, you must perform following steps for a new WebGate profile created:
Note:
The orapki utility is used for adding trusted certificate in wallet.
-
Go to
webgate_instanceDirectory/webgate/config/walletdirectory. -
Set
JAVA_HOMEvariable to the absolute path of the directory in which Java or JDK is installed. -
Run the following command to display the wallet content before adding the certificate
<MW_HOME>/oracle_common/bin/orapki wallet display -wallet ./ -
Perform the following steps to add the trusted certificate in wallet:
-
Run the following command to add the trusted certificate in SIMPLE mode:
<MW_HOME>/oracle_common/bin/orapki wallet -wallet ./ -trusted_cert -cert webgate_installDirectory/tools/openssl/simpleCA/cacert.pem -auto_login_only
-
Run the following command to add the trusted certificate in CERT mode:
<MW_HOME>/oracle_common/bin/orapki wallet -wallet ./ -trusted_cert -cert webgate_instanceDirectory/webgate/config/aaa_chain.pem -auto_login_only
-
-
Run the following command to verify the certificate added:
<MW_HOME>/oracle_common/bin/orapki wallet display -wallet ./