Keystore of JKS and Truststore, and Oracle Wallet
I'm configureing Oracle Forms and reports 11 GR 2 incorporating OID/OIM/OAM webgate/webtier. WLS use JKS Keystore and Truststore, and Oracle HTTP Oracle Wallet. I have all of this on a single server. Do I have to keep two of them? I asked a certificate with OWM. It can also be used by JKS Keystore?
What should I do?
Thank you!
HP
Oracle Wallet is used by OHS, while WebLogic uses based JKS keystore.
So if you have the OHS and WebLogic and there is a requirement for SSL, you need both.
Ref: http://docs.oracle.com/cd/E23943_01/core.1111/e10105/wallets.htm#ASADM10226
Tags: Fusion Middleware
Similar Questions
-
Hi all
11.2.0.1
I'm confused, what are the differences between ad Wallet TDE.
They use or share the same views of $ v s/n?
Thank you
pK
mkstore manages a portfolio as a secure password store. It is an interaction between the client and SQL * Net at connect time. The database is not up-to-date and does not need to be, so there is nothing in V$ PORTFOLIO.
If you create a portfolio only for use as a secure password store, you can simply delete the wallet file using the commands of the o/s if you want to. The file and all credentials stored in it will be gone.
orapki manages a portfolio of Private Key Infrastructure (certificates). This can be used with TDE, but I did not implement that personally. This seems to be the use of the portfolio that you wish to learn more.
The first shot (in my area) Google searches in the "orapki" and "portfolio $tde portfolio v" go directly to the relevant sections of the Oracle documentation for more information about PKI portfolios and their interaction with the transparent data encryption.
-
Problems with utl_https, Oracle Wallet and firewall
Hi all
We experiment utl_http and Oracle wallet and try to make a transfer of https, but we are facing some problems. I'd appreciate your help greatly if you can advise on what could be wrong. We are on db version 10.2.0.1 and Unix HP - UX and operate since in a firewall. The intention is a https url ping command and get a 200 simple answer. Future development would include documents XML get/post to this url and other interesting things. I understand that utl_http with Oracle wallet can be used for this purpose.
The portfolio was created and the ewallet.p12 exists. We downloaded the url Web site SSL certificate and downloaded in the portfolio. Everything works if I put in a url with http simple but then things work with a HTTP * S * url. Is what is called HTTPS TUNNELING required because we have a firewall? I don't know what it is or how it can be done.
I tried https with a URL internal breast of the firewall. But again, no luck. -So probably not just a firewall problem.
With HTTPS when I run the code below, I get the following error with https internal or external sites. Yet once, greatly appreciate your time and help because it is the first time us use Oracle wallet manager and don't know where to go from here.
ORA-29273: HTTP request failed
ORA-06512: at "SYS." UTL_HTTP", line 1029
ORA-29268: error of the HTTP client
declare
URL varchar2 (225);
Utl_http.req req;
resp utl_http.resp;
my_proxy BOOLEAN;
name varchar2 (2000);
value varchar2 (2000);
V_proxy VARCHAR2 (2000);
v_n_proxy varchar2 (2000);
v_msg varchar2 (100);
v_len PLS_INTEGER: = 1000;
BEGIN
-Disable the verification of the status code.
Utl_http.set_response_error_check (false);
-Set proxy server
Utl_http.set_Proxy ('my-proxy');
Utl_http.set_wallet ("file: < Unix full path to the wallet on DB server > ',' wallet998'");
Req: = utl_http.begin_request ('https://service.ariba.com/service/transaction/cxml.asp');
-Authentication proxy set
Utl_http.set_authentication (req, 'myproxyid', 'myproxypswd', 'Basic', TRUE); -Use HTTP Basic
resp: = utl_http.get_response (req);
FOR i IN 1.utl_http.get_header_count (resp) LOOP
Utl_http.get_header (RESP, i, name, value);
dbms_output.put_line(Name ||) ': ' || (value);
END LOOP;
Utl_http.end_response (resp);
exception
while others then
dbms_output.put_line (SQLERRM);
END;user11992646 wrote:
The difference between your method and this new method is that you spend the user_name: pswd as part of the url, so here it is passed as a parameter of the set_proxy.
Using the user name and password in the proxy URL is often the easiest way to deal with authentication of the proxy - even supported under Linux with the environment variable http_proxy (that you can set for s/w to detect which is the proxy configuration, when access to the web).
Would be in him passing a part of set_proxy also be considered as in "clear text"?
Don't know exactly what it generates http traffic. Likely basic auth?
It may seem that some form of "+ encryption +" is done with basic authentication. The user name and password are strung with a colon separator and then encoded in base64. So, the resulting string seems encrypted to the human eye, but can easily be decoded again (no secret necessary to perform decoding).
So this is about as insecure as passing user name and password in clear text - darkening bit added to the meter reading it naked.
In the Windows world (where it is stuck inside and look at the free and open to the outside Standards), proxy servers often use NTLM (new technology/LAN Manager) authentication. Not this again as LanManager goes back to BACK 5 project of the 1980s. ;-)
Anyway, NTLM is a proprietary protocol and not easily supported when you code using UTL_HTTP. Basic authentication will fail in this case, the proxy expects that NTLM authentication. The workaround is to add the user name and password to the URL of the proxy (as I did in this example code).
My problem is why set_authentication does not require us to use methods "unsupported"? It seems an obvious Oracle bug that they must solve.
I think that you also use NTLM authentication on the proxy server? This isn't a standard. It is the crass seller proprietrary. No real compelling reason for other providers to support - especially not when there are open standards available and used.
We have a beautiful SR and you said that you have opened a SR before without success. I'm surprised Oracle is dropping the ball on such a useful tool.
My SR has been essentially around get UTL_HTTP proxy access work with NTLM - where workaround has been as I described. I don't see this as a particular problem, Oracle have to solve.
The question is a consequence of the decision to use proprietary protocols and "+ standards. If anyone is to blame, it's Microsoft and their attempts at blocking of clients in a complete solution of owner. Unfortunately, these attempts often succeed too.
-
5.1 ACS is not supported ODBC and Oracle
Hi Netpro
Train my familiar and careless with the old version of the ACS, ACS unit I bought two 5.1 device to work in the HA function. After installation and did ' t tried configured for use with the external database with ORACLE, I see nothing. I tried to read the paper and I saw no keyword that said this support the ODBC or Oracle version. If anyone can help me what is the workaround for ACS work with ODBC and Oracle.
Thank you
Pitcher
This pitcher,
4.2 the CSA can be installed on the CSACS-1120-K9 unit simply re-Imaging it (so not really a downgrade) with a dedicated DVD.
You can get such a DVD through an official TAC case:
http://Tools.Cisco.com/ServiceRequestTool/create/launch.do
Kind regards
Fede
--
If this helps you or answers to your question if it you please mark it as 'responded' or write it down, if other users can easily find it.
-
silent uninstall ODAC 12 c module 4 and Oracle development tools
Hi all
I need to uninstall a previously installed ODAC 12 c module 4 and Oracle Developer Tools silently. Oui\bin\setup.exe will be fine uninstall, but I want to uninstall it from script.
There is no button to save a responsefile at the end of the dialog box.
oui\bin\setup.exe-Enregistrer FichierDestination - odacr4 - deinst.rsp
Does not complain, but does not record a response file.
Installation notes describe uninstall them, but not without supervision/silencer.
Any advice?
Best regards
Niels Jespersen
Here's what I used to silently uninstall ODT with ODAC. It does not require a response file, but requires that you specify the Oracle home
"{' C:\oracle\product\12.1.0\client_1\oui\bin\setup.exe-silent - waitforcompletion - nowait - uninstall" DEINSTALL_LIST = {"oracle.odac.client","12.1.0.2.0"} "' REMOVE_HOMES={"C:\oracle\product\12.1.0\client_1 "}"
A log file is generated in C:\Program Files (x 86) \Oracle\Inventory\logs
-
SSO ADF and Oracle Forms?
Hello
Is there a recommended way to share authentication between ADF and Oracle forms?
We currently use Oracle 11 g 2 forms and we have our forms developed in-house running on this. I would like to start working on some applications of the ADF, but I do not know how to ensure that the username and passwords are the same for our existing forms applications and any new request to ADF we add.
I would use JDeveloper 12 c.
We have < 100 users, so this isn't a large installation, and most users are (same office).
Thanks for ideas or advice.
Check out this blog https://blogs.oracle.com/olaf/entry/ofm_11g_oam_sso_for_forms_and because it describes how using OAM.
Timo
-
What type of newspapers exist in and Oracle
What type of newspapers exist in and Oracle
and what format to be like them,
and can any body give me link or something to download these types of newspapers.
Thank you.
'' newspapers '' can have many interpretations
archived redo redo logs, logs, alert logs, tracking logs
-
Hello
I want to know I want to take the exam of Eloqua Oracle and Oracle Content Cloud Service 2013 Marketing Specialist pre-sales.
Currently, I'm taking classes, unable to find the page where I can go for the certification exam.Any suggestions?
Thanks in advance.
Hello
You should be able to access through this link: http://ilearning.oracle.com/ilearn/en/learner/jsp/offering_details_home.jsp?classid=1371508648
I was able to retrieve it by visiting this page, which has little more context that may be useful: Service of Cloud Marketing Oracle Eloqua specialization criteria
Please like and mark as helpful if you find it useful.
Joseph
-
Hi all
I'm doing some tests on a Windows 2008 (64-bit) R2 two-node failover Cluster.
I installed and configured successfully bone and the Failover Cluster feature.
So I followed Oracle Doc-ID 1916391.1 to perform the installation and configuration of Oracle 11.2.0.4 database and Oracle Fail Safe 4.1.1
After a successful (via Fail Safe Manager) validation of cluster and group, now I'm trying to validate the stand-alone database, but I'm stuck with this error (output in verbose mode of PowerShell):
PS C:\Users\demo > Test-OracleClusterAvailableDatabase TESTDB - SysPwd (Read-Host-AsSecureString-Prompt "SYS Password ')-verbose
SYS password: *.
DETAILES: FS-10915: NODE1: from verification of autonomous resources TESTDB
DETAILES: FS-10371: NODE1: run the initialization processing
DETAILES: FS-10371: NODE2: run the initialization processing
DETAILES: FS-10372: NODE1: resource owner information collection
DETAILES: FS-10372: NODE2: resource owner information collection
DETAILES: FS-10373: NODE1: determine the owner of the TESTDB resource node
DETAILES: FS-10374: NODE1: collection of cluster information required to perform the specified operation
DETAILES: FS-10374: NODE2: collection of cluster information required to perform the specified operation
DETAILES: FS-10375: NODE1: analysis of the cluster information required to perform the specified operation
DETAILES: FS-10378: NODE1: preparation for the configuration of resource TESTDB
TH: FS-10349: database TESTDB instance is not alive. You want to stop and restart the database instance?
Confirmation
Operation does?
Running dell' operation sulla "Test-OracleClusterAvailableDatabase' likelihood 'TESTDB '.
[S] Sì Sì [T] a [N] no [U] tutti a tutti [O] Sospendi [?] Guida (he valore predefinito e "S"):
DETAILES: FS-10350: from the TESTDB database
Test-OracleClusterAvailableDatabase: OCIEnvNlsCreate failed
Riga: 1 car: 1
+ Test-OracleClusterAvailableDatabase - SysPwd TESTDB (Read-Host - AsSecureString - P...)
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo: DeviceError: (TESTDB:ResourceDatabase) [Test-OracleClusterAvailableDatabase], PowerShell
Exception
+ FullyQualifiedErrorId: Process, Oracle.FailSafe.PowerShell.TestOracleClusterAvailableDatabase
Test-OracleClusterAvailableDatabase: FS-10999: an internal programming error
Riga: 1 car: 1
+ Test-OracleClusterAvailableDatabase - SysPwd TESTDB (Read-Host - AsSecureString - P...)
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo: DeviceError: (TESTDB:ResourceDatabase) [Test-OracleClusterAvailableDatabase], PowerShell
Exception
+ FullyQualifiedErrorId: Process, Oracle.FailSafe.PowerShell.TestOracleClusterAvailableDatabase
Test-OracleClusterAvailableDatabase: FS-10160: impossible to verify the Oracle of standalone TESTDB database
Riga: 1 car: 1
+ Test-OracleClusterAvailableDatabase - SysPwd TESTDB (Read-Host - AsSecureString - P...)
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo: DeviceError: (TESTDB:ResourceDatabase) [Test-OracleClusterAvailableDatabase], PowerShell
Exception
+ FullyQualifiedErrorId: Process, Oracle.FailSafe.PowerShell.TestOracleClusterAvailableDatabase
Test-OracleClusterAvailableDatabase: FS-10818: provider of resources of the database Oracle failed in preparing for
treatment for TESTDB resource configuration
Riga: 1 car: 1
+ Test-OracleClusterAvailableDatabase - SysPwd TESTDB (Read-Host - AsSecureString - P...)
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo: DeviceError: (TESTDB:ResourceDatabase) [Test-OracleClusterAvailableDatabase], PowerShell
Exception
+ FullyQualifiedErrorId: Process, Oracle.FailSafe.PowerShell.TestOracleClusterAvailableDatabase
Test-OracleClusterAvailableDatabase: FS-10890: Oracle Services for MSCS failed during the verifyStandalone operation
Riga: 1 car: 1
+ Test-OracleClusterAvailableDatabase - SysPwd TESTDB (Read-Host - AsSecureString - P...)
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo: DeviceError: (TESTDB:ResourceDatabase) [Test-OracleClusterAvailableDatabase], PowerShell
Exception
+ FullyQualifiedErrorId: Process, Oracle.FailSafe.PowerShell.TestOracleClusterAvailableDatabase
Attached is the log of the OFS Cluster Dump (no error in my opinion).
I surfed around but I can't find anything to solve the problem.
I think something about the language of the (Italian) OS and Oracle NLS settings (AMERICAN. AMERICA), but obviolsly I'm not sure about this.
Thanks in advance for any suggestion,
Alessandro
Message modificato da 1d457339-524e-4aa5-94aa-fd7d1ae98732 updated: attached is also output trace of the fss.
Hello Alessandro.
Solution to the issue is:
Patch 20744940: 4.1.1.1: ORACLE FAIL SAFE VERSION 4.1.1 PATCH SET 1
-
Tuxedo of Oracle and Oracle Tuxedo message queue on a virtual machine.
Hi friends.
How is it going?
A small question.
So let's go live using Oracle Tuxedo 12.1.1.0 with binding distinguished Bulletin Board and Oracle Tuxedo Message Queue 12.1.1.0 on a Virtual Machine (VMWARE) running Oracle Linux 6.2. However, we want to know if there are recommendations or mishaps in which we face before running Oracle Tuxedo on a virtual machine?
I mean, I wonder if I have to worry about kernel parameters, settings of virtual machine or any other thing that could ruin everything.
Another question.
Oracle also provides certification of VMS where Tuxedo Oracle would go on top of the?
Hi Bruno.
I'm not sure what you mean with single Liaison Bulletin Board. I guess you mean a cluster or the MP configuration? And is it really a clustered or just a single machine of the MP configuration?
About the configuration, you use Tuxedo services as well or just Tuxedo Message Queue? The biggest problem with the configuration of the BONE is the IPC resources. If you do a-c tmloadcf on your UBBCONFIG file, it will help you to determine the required minimum IPC resources. In general, I suggest configuration much more resources than the minimum to allow for the changes to come and for some of the parameters for heavier loads. In particular IPC message queue settings are strongly dependent on the load. So make sure that the maximum message size and the size of the queue are big enough for your expected workload. You can monitor the slot load using the ipcs command.
We don't certify virtual machine environment, but support also a long time the VM vendor to ensure compatibility, obviously VMware and Oracle VM who both do.
Kind regards
Todd little
Chief Architect of Oracle Tuxedo
-
OS and Oracle block size block size
[Condition] If the size of the block of BONE [512 b - 64K] is greater than the size of block Oracle [2K - 16K]
Assume: BONES Block Size: 32K and Oracle block size: 8K
Quebec: One-to-many relationship will always be true? or block Oracle will use 8K to 32 K, and the rest will be unused? or it will return the error at the time of the creation of the data file?
This will challenge the relationship "one to many".
Leader: Oracle logical and physical storage diagram.svg - Wikimedia Commons
Refer to the basis of the diagram.
" --------------------< "="" show's="" one="" to="" many="" relation.="" one="" x="" can="" contain="" many="">
">-------------------<" show's="" many="" to="" many"="" i.e="" many="" x="" can="" contain="" many="">">
You don't seem to be read or understand what everyone says.
There is NO such "one to many" relationship. Like I said above
There is no 'validation of one to many '.
1. the operating system uses a given block size
2. you choose an Oracle block size
All these "one to many" is just the result of the choices you made in #2 above. There isn't any 'validation' that occur.
This likely diagram shows this relationship based on the recommendation of Oracle to select a block size that is a multiple of the block size of OS. If you do that this diagram will NOT reflect the case of NORMAL use.
You can't believe everything you see on the internet. Articles/diagrams and others are often from unknown or reliable sources.
2.
'Validation' is not any process.
I just wanted to write the Validation of the theory, the relationship.
Re-read what I just said again above.
There is NO validation. There is NO theory of validation.
All there is is the reality of the block size, you choose and the reality of the OS block size you use. Any relationship between these two values is just a reflection of these two values.
If you choose two different values, they have a completely different relationship to each other.
Oracle works with blocks of the Oracle. The operating system works with the BONE blocks. Oracle does not care really what size a block of BONE is in connection with an Oracle block.
-
Are the "Oracle Hyperion Reporting and Analysis" and "Oracle Hyperion Financial Reporting," one and the same product?
Alanysis and Hyperion reports has a scope of report include Hyperion Finanicial Reporting, web analytics services RA framework and the Foundation as a layer application and client level there EMP Workspace, SmartView etc.
Thank you
~ KKT ~.
-
Disable the Tunning &; diagnostic packs in oracle 10g and oracle 9i
Hello
According to the license agreement, our organization asked to disable the packs tuning & diag on Oracle databases.
We use versions diff of databases oracle (oracle 9i, 10g, 11g)
In oracle 11g, we can disable tuning & diag packs using the control_management_pack_access parameter to none.
How to disable the setting & diag packs in Oracle 10 g and oracle 9i?
Thank you
AWR did not exist up to 10g, so I don't think that the diagnosis of EM or Tuning Packs are a problem with 9i. As mentioned statspack is free and available always in 11g, so it is available for use. -Mark-
-
Version of grid Infrastructure: 11.2.0.4
Platform: Oracle Linux 6.3
For the separation of roles, we have created a grid and oracle users.
grid-> to manage the network infrastructure, which includes ASM
Oracle-> to manage the RDBMS
GI will be installed under the /grid mount point
RDBMS will be installed under the/U01 mount point
Who should be the owner of oraInventory in such a scenario? grid or oracle user
Where oraInventory should be placed? Under Mount /grid or/U01 point?
Who should be the owner of oraInventory in such a scenario? grid or oracle user
Better choose grid if you use the separation of roles.
Where oraInventory should be placed? Under Mount /grid or/U01 point?
As long as oracle and grid users have rwx privilege on the inventory directory, you can place on a consistent OFA or nearby location OFA compliant.
Personally, I prefer/u01/app/oraInventory
Approval should look like below
$ ls-l/u01/app/oraInventory
drwxrwx - 6 grid oinstall 4096/u01/app/oraInventory 13 August 2012
Its better for itself an inventory centralized for GRID_HOME and ORACLE_HOME. It is easy for opatch auto work properly with a properly configured central inventory.
The grid and oracle users must have the Oracle inventory group oinstall as their primary group, so that each owner (grid, oracle) Oracle software installation can write on the central inventory.
-
What LKM and IKM for b/w MSSQL 2005 and Oracle 11 of fast data loading
Hello
Can anyone help to decide what LKMs and IKMs are best for data loading between MSSQL and Oracle.
Staging area is Oracle. Need to load around the lines of 400Million of MSSQL to Oracle 11 g.
Best regards
Muhammad"LKM MSSQL to ORACLE (BCP SQLLDR)" may be useful in your case which uses BCP and SQLLDR to extract and laod of MSSQL and Oracle database.
Please see details on KMs to the http://docs.oracle.com/cd/E28280_01/integrate.1111/e12644/ms_sqlserver.htm#BGBJBGCC
Maybe you are looking for
-
Satellite M40 stop under its own
My bodyguard M40 stop under its own - according to the operating instructions is due to internal heat is too high - y at - it something I can do to fix this problem?
-
Satellite 1410, Alt-Gr-key change position
How to change the Alt Gr key position? I have my Satellite 1410 it is 4th on the right of the space key. I want her to be directly on the right of the space key, as in other computers. I use Windows XP Home Edition. It is possible to flexibly?
-
I increased my memory to the laptop and then increase the pagefile size to match the new memory but now the pagefile is moved from it of original position at the beginning of the training and is now located somewhere in the middle of the road. How ca
-
Gateway dx 4200-ub001a quadruple-heart, 6 GB of ram. No hardware problem, that I can find. restarts just constant return to the windows error recovery screen. get a blue screen saying change the bios if it continues to happen, but nothing specific. I
-
Well, I'm sitting here being embarrassed and angry. I went in Firefox tools to check obsolete Add-ons and I saw that he had to update Adobe Reader plug-in. Stupidly, I just went through with the update of FF and ended with Adobe Reader DC. Does anyon