4.6 Configuring SSL

Configure SSL to secure data communication between Oracle Identity Governance and the Oracle NetSuite target system.

Note:

If you are using this connector along with a Connector Server, then there is no need to configure SSL. You can skip this section.

To configure SSL:

1. Obtain the SSL public key certificate of Oracle NetSuite.
2. Copy the public key certificate of Oracle NetSuite to the computer hosting Oracle Identity Governance.
3. Run the following keytool command to import the public key certificate into the identity key store in Oracle Identity Governance:keytool -import -alias ALIAS -trustcacerts -file CERT_FILE_NAME -keystore KEYSTORE_NAME -storepass PASSWORD

In this command:

• ALIAS is the public key certificate alias.
• CERT_FILE_NAME is the full path and name of the certificate store (the default is cacerts).
• KEYSTORE_NAME is the name of the keystore.
• PASSWORD is the password of the keystore.

• keytool -import -alias serverwl -trustcacerts -file supportcert.pem -keystore client_store.jks -storepass weblogic1

  • keytool -import -keystore <JAVA_HOME>/jre/lib/security/cacerts -file <Cert_Location>/NetSuite.crt -storepass changeit -alias NetSuite_1
  • keytool -import -keystore <WL_HOME>/server/lib/DemoTrust.jks -file <Cert_Location>/NetSuite.crt -storepass DemoTrustKeyStorePassPhrase -alias NetSuite_2

  Note:

  • Change the parameter values passed to the keytool command according to your requirements. Ensure that there is no line break in the keytool arguments
  • In the Oracle Identity Governance cluster, perform this procedure on each node of the cluster and then restart each node.
  • Ensure that the system date for Oracle Identity Governance is in sync with the validity date of the SSL certificate to avoid any errors during SSL communication.