4.6 Configuring SSL
Configure SSL to secure data communication between Oracle Identity Governance and the Oracle NetSuite target system.
Note:
If you are using this connector along with a Connector Server, then there is no need to configure SSL. You can skip this section.
To configure SSL:
- Obtain the SSL public key certificate of Oracle NetSuite.
- Copy the public key certificate of Oracle NetSuite to the computer hosting Oracle Identity Governance.
- Run the following
keytool
command to import the public key certificate into the identity key store in Oracle Identity Governance:keytool -import -alias ALIAS -trustcacerts -file CERT_FILE_NAME -keystore KEYSTORE_NAME -storepass PASSWORD
In this command:
- ALIAS is the public key certificate alias.
- CERT_FILE_NAME is the full path and name of the certificate store (the default is cacerts).
- KEYSTORE_NAME is the name of the keystore.
- PASSWORD is the password of the keystore.
-
keytool -import -alias serverwl -trustcacerts -file supportcert.pem -keystore client_store.jks -storepass weblogic1
keytool -import -keystore <JAVA_HOME>/jre/lib/security/cacerts -file <Cert_Location>/NetSuite.crt -storepass changeit -alias NetSuite_1
keytool -import -keystore <WL_HOME>/server/lib/DemoTrust.jks -file <Cert_Location>/NetSuite.crt -storepass DemoTrustKeyStorePassPhrase -alias NetSuite_2
Note:
- Change the parameter values passed to the keytool command according to your requirements. Ensure that there is no line break in the keytool arguments
- In the Oracle Identity Governance cluster, perform this procedure on each node of the cluster and then restart each node.
- Ensure that the system date for Oracle Identity Governance is in sync with the validity date of the SSL certificate to avoid any errors during SSL communication.