Authenticate
Oracle Advanced Authentication uses a certificate authority (CA) certificate, issued by Verisign, to enable clients to connect securely to the server.
You access the Oracle Advanced Authentication REST resources over HTTPS and you must provide the following information for authentication:
-
An SSL certificate authority (CA) certificate file or bundle to authenticate against the Verisign CA certificate.
-
User name and password for your Oracle Advanced Authentication account.
For example, to authenticate using cURL:
-
Set the cURL environment variable,
CURL_CA_BUNDLE, to the location of your local CA certificate bundle. For information about CA certificate verification using cURL, see: http://curl.haxx.se/docs/sslcerts.html. -
Pass the
<request-header>custom request header using the-HcURL option. -
The username and password for the Rest API can be constructed as following:
- username:
<RELEASENAME>-oaa - password:
<Base64Decoded oaaapikey>
Note:
For the KBA tasks the username is<RELEASENAME>_OAA_KBA(this must all be in uppercase), and the password is<Base64Decoded oaafactorsapikey>. - username:
The following is the syntax of the cURL command:
curl -i -X GET -H Authorization:Basic <Base64Encoded(<username>:<password>)> -H <request-header>:<value> <OAAService>/<resource-path>
Note:
To obtain the<OAAService>,
username, and
password, see
Printing Deployment Details on Console.