Wednesday, November 29, 2006

Configure Oracle over SSL

Configure ORACL with one way SSL


Create Wallet
● Create new Standalone wallet
● Create new certificate request. Give server computer name as common name
● Take Verisign trial certificate for 14 days from certification request
● Make Autologin enable
● Save Wallet


Configure Oracle Net Manager – oracle Advance Security

● open oracle net Manager
● Click profile
● select “Oracle Advance Security” from top drop down list
● Click SSL node
● Give Wallet directory where Wallet saved
● Checked “Configure SSL for Server”
● Select Require SSL version as SSL 3.0

Configure Oracle Net Manager – Listener

● Click Listener
● from Edit menu click New
● Select “Listening Locations”
● Click “Add Address”
● Select Protocol as TCP/IP with SSL
● Host as Server name – should be same as common name in certificate
● Server Port – oracle recommends 2484

● Select Other services from drop down
● Program name : extproc
● SID - PLSExtProc
● Provide Oracle Home directory location

● Select “Database Service” from drop down list
● global databasename : ORCL
● Oracle Homedirectory :
● SID: ORCL

Start Listener

Go to /bin
Type lsnrctl command

lsnrctl> Start
lsnrctl> Stop
lsnrctl> Service

Configure tnsnames.ora as follows

ORCLS =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCPS)(HOST = )(PORT = 2484))
)
(CONNECT_DATA =
(SERVER = DEDICATED)
(SERVICE_NAME = orcl)
)
)

Connect to Database

● Start SQL*PLS
● connect username/password@orcls

posted by Nishidhdha @ 1:05 AM

0 Comments:

Post a Comment

<< Home