SSL installation in Oracle using Oracle Wallet Manager
Apr 20, 2023
Oracle Wallet Manager is a software that facilitates the management and editing of security credentials in Oracle wallets. A wallet is a secure storage location for credentials used for authentication and signing, such as private keys, certificates, and trusted certificates, which are necessary for strong authentication using SSL. This guide will provide a comprehensive overview of the process to install your TLS/SSL certificate in Oracle Wallet Manager.
When creating an Oracle Wallet Manager, you will be asked to generate a Certificate Signing Request (CSR) that can be used to acquire a TLS/SSL certificate from a reputable Certificate Authority (CA). If you have an existing CSR and its corresponding private key, you may proceed directly to Part II of this guide and skip the generation process.
If you haven't generated your certificate and finished the validation process yet, please refer to our
CSR generation instructions
before proceeding with the steps below.
Part I:
Adding a Certificate Request
-
Launch
Oracle Wallet Manager
.
-
Choose the "
Operations
" option from the menu and select "
Create Certificate Request
" to open the dialogue box.
-
Enter the required information in the fields such as
Common Name, Organization, Locality/City, State/Province, Country, Key size and Advanced
.
-
Click OK to confirm and you will be notified that the request has been successfully created.
-
Click OK again to return to the main menu, and notice that the status of the certificate has changed to "Requested.”
-
Under the "
Operations
" option, select "
Export Certificate Request
."
-
Save the CSR file in the desired directory and name.
-
Now the file can be used to order your certificate from a certificate authority (CA) and for a complete guide on this procedure, consult the guide provided by your CA.
-
Once you receive your certificate from the CA, you can install it in Oracle Wallet Manager by following the instructions in PartII.
Part II:
Installing your TLS/SSL certificate to the Oracle Wallet Manager
II-A. Obtaining the necessary files
Before installing your certificate in Oracle Wallet Manager, you need to obtain it from your certificate authority (CA) account. You can follow these steps to do so:
-
Go to the Orders tab in your CA account dashboard.
-
Locate the certificate you want to install and click on the details.
-
Download the compressed file, which includes three separate certificate files
(ROOT.crt, INTERMEDIATE.crt, and USER.crt)
II-B. Installing the Certificates
There are two options to install a certificate into your wallet: importing the certificates from the file or pasting the certificate contents as text.
Option A: Import from the file
-
Launch
Oracle Wallet Manager
-
From the menu bar, select
Operations
and then Import Trusted Certificate
-
Use the dialogue box to select the
ROOT.crt file
and confirm the import.
-
Repeat the same steps for the
INTERMEDIATE.crt and USER.crt files
in the correct order.
Option B: Import as text
-
Launch
Oracle Wallet Manager
-
From the menu bar, select
Operations
and then Import Trusted Certificate
-
Use the dialog box to paste the contents of the
ROOT.crt file
, including the lines "Begin Certificate" and "End Certificate"
-
Repeat the same steps for the
INTERMEDIATE.crt and USER.crt files
in the correct order
-
Save your changes before closing Oracle Wallet Manager
