Oracle Wallet using Global Server (128 bit) certificate?
Hi,
Does anyone know whether the Oracle Wallet Manager and Oracle Web Cache support 128 bit certificate? We have an application that require strong enryption (preferably on 128 bit rather than 40 bit) and it is accessed through Oracle Web Cache. We want to import a 128 bit certifcate into an Oracle Wallet but not sure whether this feature is supported or not. As we are based in Australia so we are not sure whether there is any difference in terms of version (e.g. export version vs us version).
Oracle Wallet Manager: 2.1
Oracle Web Cache: 2.0.0.2.0
Any help will be very much appreciated.
Thanks,
Patrick
You should be using Web Cache 9.0.2.0 if at all possible.
In terms of certificate size, the normal ones are 512 and 1024.
You may be thinking of whether we can support 128-bit encryption between client and server. The answer is yes.
Similar Messages
-
Oracle Wallet on Application Server
My requirement is to get Oracle Wallet connections (eg /@<wallet_name>) working on an Oracle Application Server 10g 10.1.2.0.2 in these four ways:
1. SQLPLUS eg sqlplus /@<wallet_name>
2. RWCLIENT
3. Oracle Forms
4. Reports URLS
5. Perl dbi
I can't get any of these to work, even SQLPLUS. I think it's down to the fact that the database is 10.1.0.5.
If I map a drive to a 10.2.0.4 installation and set ORACLE_HOME to that, SQLPLUS works okay. I imagine I might be able to get the Perl dbi working via that too.
However, I don't know how to get the reports working. I can probably live with FORMS not being in the wallet.
Thanks.
Edited by: R_Norvegicus on Sep 24, 2010 5:49 AMI had a reply from Oracle Support that the feature I'm trying to use was introduced in 10g Release 2 so this is why the application server doesn't have it.
Can I put a 10.2 client on application server without causing other problems to get around this? -
MC340LL/A Airport Extreme using a 128 bit 26 digit password.
I may be asking the wrong question out of ignorance, but I'm confident if I am wrong someone will set me straight. I have an old cone shaped Airport Extreme, that one that looks like a flying saucer, using a WEP 128 bit 26 digit password and at least seven networked devices (two Tivos, an Apple TV, a Ceiva frame, a printer, an iPhone and a PC laptop running Vista). If I were to upgrade to a MC340LL/A Extreme, I would like to not have to reinstall those existing devices, i.e., use a different encryption. Several questions: Will I be able to install the MC340LL/A using my existing security setup and password? Is it possible to install the MC340LL/A with more "modern" security without reinstalling my existing devices? Am I asking the right question(s) or do I not comprehend the issue(s)?
Welcome to the discussions!
+If I were to upgrade to a MC340LL/A Extreme, I would like to not have to reinstall those existing devices, i.e., use a different encryption.+
I'll offer my opinion here and hope that you will get other varying opinions as well.
The simple answer here may that in order to meet your requirements, the Radio Modes on the new Extreme would have to be set down to the same "g" levels that you are using now.
This can be done, but other than possibly picking up a Guest network function, there would be virtually no wireless performance benefit with the change to the new Extreme. You will still be at "g" level wireless.
The exception might be if devices could use what is known as WEP Transitional Security, which would allow some "n" level wireless speeds. But, I'm not sure if your existing password would work in this arrangement, and I'm not sure that all of your devices would function at this setting.
If you have to make a switch, then it would make more sense to move to the much more secure settings offered by WPA2 Personal or WPA/WPA2 Personal security. (As you may be aware WEP is no longer considered secure and can be cracked by anyone with a modest toolkit).
But, I can't tell you whether the Tivos, the Ceiva, or the printer would handle this level of security. It will take some real research to learn whether devices might be compatible; and each device will need to be reinstalled with new passwords. Expect some frustration at best and probably an incompatible device or two.
The Apple devices will all handle the WPA settings and I think the PC running Vista would probably handle it as well. Can't say on the others, but if they are new...a year or two old...that would be an encouraging sign.
Please post back on your progress. -
Hi all,
Inorder to test SSL, i created a certificate request in OWM.Then i got a trial certificate from verisign for this request.What should i do now ? I tried to import that certificate in Oracle Wallet manager but getting this error.
"Trusted Certificate Installation Failed.
Input was not a valid certificate".
Please guide me
Srinibelw is the note
PURPOSE
To list the steps needed to configure Oracle HTTP Server (OHS) to use the Secure
Sockets Layer (SSL) when installed with Oracle9i Application Server (9iAS)
Release 2 (9.0.2). The below instructions show, step by step, instructions for
obtaining a trial certificate from a Certificate Authority, such as Verisign or
Thawte. Please refer to the Oracle 9iAS Documentation for further details.
SCOPE AND APPLICATION
Oracle9i Application Server (9iAS) Release 2 (9.0.2 and above)
Configuring SSL with Oracle HTTP Server in 9iAS Release 2
There are two major steps needed to configure SSL in 9iAS:
I. Create an Oracle Wallet which contains an SSL Certificate
II. Configure httpd.conf directives to enable SSL with OHS
NOTE:
Only standard server certificates are supported. These are sometimes referred
to as "40-bit Certificates", but will allow 128-bit encryption provided the
browser supports 128-bit encryption. 9iAS Release 2 does not support Global
Server Certificates, called "128-bit Certificates", that allow 56-bit export
browsers to step up to 128-bit.
STEP I: Configuring Oracle Wallet Manager (OWM)
1. Start Oracle Wallet Manager from the 9iAS $ORACLE_HOME.
Note: If you wish to use AutoLogin features you must start OWM as the user
who owns the httpd parent process.
To start Oracle Wallet Manager:
On Windows: select Start > Programs > Oracle - ORACLE_HOME >
Integrated Management Tools > Wallet Manager
On UNIX: enter owm at the command line.
2. Create an Oracle Wallet which contains an SSL Certificate:
- Select Wallet -> New
- Enter a password for the wallet e.g Welcome1
- Create a Certificate Request.
- Enter the details for the request. For example:
Common Name: <hostname.domainname>
Organizational Unit: Support
Organization: Oracle
Location: Reading
State: Berkshire
Country: United Kingdom
Key Size: 1024bits
* Common Name has to match the hostname.domainname that the webserver is
known as. This is the Servername parameter in the httpd.conf file, and
is the hostname.domainname that users will enter in the browser URL.
- Click OK.
- Click 'Certificate:[Requested]' and select from the Menu 'Operations' and
'Export Certificate Request'
- Save to a file e.g server.csr
- Open the file in a text editor and copy the contents of the certificate
signing request, to be pasted in a Certificate Authority (Verisign) form.
An example is shown below:
-----BEGIN NEW CERTIFICATE REQUEST-----
MIIBtzCCASACAQAwdzELMAkGA1UEBhMCR0IxEjAQBgNVBAgTCWJlcmtzaGlyZTEQMA4GA1UEBxMH
cmVhZGluZzEPMA0GA1UEChQGb3JhY2xlMRAwDgYDVQQLFAdzdXBwb3J0MR8wHQYDVQQDFBZ1a2Ro
MTkzNC51ay5vcmFjbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCYkFMb9x4ehsG3
yQ2ub319GxPW+/TC3NSIYRLzEa49EziqBUr08R3Ssn9+6nolVjj1eb3rzwCfjiOSzsp1lSa/B9Vo
63pwP6xLbCgF8J86YfcZvavgLzY0Yc1fPfRxpZkb/jjt+F1zkaI6Lilm5YU3bRNYMb36TAWxUYL1
m6wZOwIDAQABoAAwDQYJKoZIhvcNAQEEBQADgYEACKXTmPHaSe3Lx3onnKJk/qI8SzpKyQC/B29v
JGg1+7Lb7gl052Y9WKxbKHzOQOYr8yYxMXNBCUwW6kBAFoxTWSpIxIQOpJXcsu1RlHKaLfAnw053
LiwpRB6do7MBrVgMRiv3AyTkJkgRzSxABWAgNpBPbhH+L6PZj5tSjOPErKA=
-----END NEW CERTIFICATE REQUEST-----
3. Request a Certificate from a Certificate Authority:
- Load a web browser and go a Certificate Authority website of your choice.
The examples below are from www.thawte.com:
- Click on 'request your free trial'.
- Fill in the necessary name and address details etc. and 'Submit'.
- Paste in the certificate request into the box under the
'Certificate Signing Request' Section.
- Select "Test X509v3 SSL Cert" and hit "Generate Test Certificate"
- Once submitted the Trial Certificate will appear on screen similar to below:
-----BEGIN CERTIFICATE-----
MIICnDCCAgWgAwIBAgIDD9m+MA0GCSqGSIb3DQEBBAUAMIGHMQswCQYDVQQGEwJa
QTEiMCAGA1UECBMZRk9SIFRFU1RJTkcgUFVSUE9TRVMgT05MWTEdMBsGA1UEChMU
VGhhd3RlIENlcnRpZmljYXRpb24xFzAVBgNVBAsTDlRFU1QgVEVTVCBURVNUMRww
GgYDVQQDExNUaGF3dGUgVGVzdCBDQSBSb290MB4XDTAxMTAyNDE0MDIxOVoXDTAx
MTExNDE0MDIxOVowdzELMAkGA1UEBhMCR0IxEjAQBgNVBAgTCUJlcmtzaGlyZTEQ
MA4GA1UEBxMHUmVhZGluZzEPMA0GA1UEChQGT3JhY2xlMRAwDgYDVQQLFAdTdXBw
b3J0MR8wHQYDVQQDFBZ1a3AxNTkxOC51ay5vcmFjbGUuY29tMIGfMA0GCSqGSIb3
DQEBAQUAA4GNADCBiQKBgQDiQbg8KHjQ8hazvFe+OFhQa6ka+i5oShUty1MhlH+/
/xXP+j82h4VlyPG6IGKeQdXLhnKXgLuxTZ8/VDtLZyucmpIB95o2A3Betjp7UdIm
C572rKrQTA+1mCt/KLWcNE+fQuCmhloaERh3jsWTng0TKsDpJeAJdW2F4tCy/E/E
MwIDAQABoyUwIzATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMA0G
CSqGSIb3DQEBBAUAA4GBACffzyC3qvAlvNWc6mBPMjFu6XWUGZBuNawFCz8qGw5/
ce3rWFNI4zOjc1OncoJg7FjDJgAWqiJFHgdV4gwQm/8lTJX6wD1FhMtrJDXf29ei
1DAe8kBOBWiFMio8Qjp24TdxoI6/53/32ydl91CPtTKAix3SaC2bBS5lG73AbKRr
-----END CERTIFICATE-----
- Copy the certificate to a file called server.crt
- Get the Trusted CA Root certificate by accessing:
https://www.thawte.com/roots/index.html
- Copy the certificate that appears on the screen to a file called
servertest.crt
- Ftp or move the files to a directory on your server
- In Wallet Manager select Operations -> Import User Certificate.
- It will then ask you if you want to Paste the certificate or load
from a file. Choose 'Select a file that contains a certificate'.
- Select the file server.crt and hit OK.
- At this point, the Wallet Manager may complain that the Trusted CA Root
Certificate does not exist in the wallet. It will ask if you want to
import it now. Select Yes. See Below
- Select 'Select a file that contains a certificate' and select the
servertest.crt file.
- If this completes successfully you should see Certificate:[Ready] and the
Thawte Test CA Root will appear in the list of trusted certificates.
- If you desire Oracle HTTP Server to AutoLogin to the Wallet, then select
AutoLogin. (Wallet Manager must have been started as the owner of the
httpd parent process for this to work).
- From the menu, File -> Save
Save the Wallet in a directory where the 9iAS user has permission to access
* If you generated your test certificate via www.verisign.com there is an additional
step required if OWM is not accepting the Trusted CA Root Certificate. The step is
as follows:
In OWM, at the point of message "User certificate import has failed because the
CA certificate does not exist". You are expected to import the CA certificate.
For Verisign, that would be the 'Test CA Root' for the Trial version. Verisign's
email has instructions on how to download the Test CA Root. One problem with the
Test CA Root is that it is saved as DER encoding, but OWM expects BASE64 encoding.
Please do following, using Internet Explorer 5.X as example.
1. Following Verisign instructions and install Test CA Root
certification into IE.
2. Export 'Test CA Root' from IE in BASE64 format
Tools -> Internet Options -> Contents -> Certificates
-> Trusted Root Certificate Authorities
Select CA issued by Versign with following Description in 'Issued to' column
"For Versign authorized testing only ....."
Export -> Next -> select Base-64 encoded X.509(.cer)
The file saved must me accessible to OWM
3. When prompted to load 'CA certificate ', provide the Base64 encoded file.
Then, continue where you left off when OWM did not accept your Trusted CA
Root Certificate.
STEP II: Configuring Oracle HTTP Server (OHS)
Please review the default directives in the httpd.conf file that relate to SSL by
opening the file in a text editor and search on "SSL". If you have not already
done so, please make a back up of this file. Do NOT hand edit this file without reading
the precautions in the 9iAS Documentation. You should use the Enterprise Manager (EM)
Website to modify this file. For SSL to work, the SSL 'listen' port must match the
"VirtualHost _default_" directive within the file. All other SSL parameters are
set to the default, and you can modify at a later time, depending on your needs.
## SSL Support
Listen 80
Listen 443
#443 is the SSL port number.
##Further down in file:
<VirtualHost default:443>
For the purposes of a basic SSL configuration, you should only need to
change the following directives:
SSLWallet
SSLWalletPassword
- Change the SSLWallet directive to the path where you saved your wallet, i.e:
SSLWallet file:/tmp/wallets
- If you get an error, ADMN-906025 with exception 806212, when starting OHS
after modifying httpd.conf, it is because you need to supply this password.
You may also see errors such as the following:
Error Failed to restart HTTP Server.
Timeout has been reached. Timeout has been reached.
If you did not select AutoLogin, then you need to change the SSLWalletPassword
to your clear text Wallet password by adding the following into your httpd.conf
SSLWalletPassword <yourPassword>
- If you wish to encrypt the SSLWalletPassword refer to the following:
[NOTE:184677.1]
How to Use IASOBF to Encrpyt a Wallet Password Within 9iAS Release 2
- Save the configuration, and restart Oracle HTTP Server
- Test a URL to Oracle HTTP Server in SSL mode:
https://<hostname.domainname>:<port> -
I have an interesting situation. I need a way to basically take a pre-existing SSL certificate and ram it down the throat of an Oracle Wallet as we run a wildcard certificate for our domain and there will not be a matching certificate request fore each server. I have the certificate in an already existing JKS but I have components in my domain that require wallets. In 10 IAS there was a tool that would allow me to basically build the wallet in a way that would let me totally bypass any kind of checks that would stop me from doing just this but I have yet to find a way to do so in the 11g envrioment. Can anyone provide any tips?
I still have my 10gR2 OID wallet but when following the metalink (309627.1) tip for moving them, the password still gets mangled after it is copied to my other servers and OWM is unable to access them.
I am not sure if this is the best place to ask this question but it seemed ok as this deals specifically with Oracle Wallets and not any particular product.David
This seems to cover your questions :
"Configuring Wallet Manager to enable HTTPS connect with Oracle 11g database"
http://oraclepoint.com/oralife/2010/10/08/configuring-wallet-manager-to-enable-https-connect-with-oracle-11g-database/
Best Regards
mseberg
My own rough notes are : ( I already had the ACL for Oracle setup )
Step 1
create the needed file
vi newwallet.crt
And insert the cert information into it.
Watch out for white space left by vi
Step 2
As root under /etc create the folder ORACLE
As root under /etc create the folder WALLETS
Set the owner as follows
chown -R oracle.oinstall /etc/ORACLE
( You can put this where it make the most sense on your system )
Step 3
Try to create a new Wallet using owm
If the wallet exists owm will bark.
If own asks you if you want to create a certificate click no.
If you created a new Wallet make sure to save it in owm.
Step 4
Select "Import Trusted Certificate" in owm.
Pick the file you saved before, you should get "The trusted certificate has been successfully imported"
Step 5
Add the following to the sqlnet.ora file on the server:
WALLET_LOCATION = (SOURCE = (METHOD = FILE) (METHOD_DATA = (DIRECTORY = %PATH_TO_WALLET%)))
Note: adding extra lines like #SQLNET.WALLET_OVERRIDE = TRUE will override everything and your database will not connect!!!
What was added
WALLET_LOCATION = (SOURCE = (METHOD = FILE) (METHOD_DATA = (DIRECTORY = /etc/ORACLE/WALLETS/oracle)))
Step 6
Restart Listener
Step 7
Try to create a SELECT utl_http.request from dual and use it to check.
Sorry, my example is worthless to you.
But this may help
Configuring Wallet Manager To Enable HTTPS Connections Via UTL_HTTP.REQUEST [ID 169768.1]
Edited by: mseberg on Aug 1, 2011 3:10 PM -
Good Afternoon,
Well once again they have me trying to figure out some more oracle issues. To make a long story short, one of the servers that we have which is on a separate network, I had to create an oracle wallet to connect our database on the server over an SSL port going out to our dev database. I was able to successfully set this up using the wallet manager and connect to the database.
The reason we are doing this is because we have some DBlinks setup and we are trying to pull data from another schema. Well I had to create another oracle wallet on another server to go to our test database but this time this network has some pretty tight security, firewall on the switch, ACL’s on some other hardware.
At first we had to get one of the network guys to open up the port to the database because when we performed a tnsping, we were not getting a response. After the change we got a successful response, and I started creating the other wallet. All was successful and I modify the sqlnet.ora file similar to the other server. I login into the database with the schema owner that we have on the one database and I perform a simple select statement to pull data back from the other database using the DBlink. My issues is that I am getting “ Error:ORA_28759:Failed to open file”. The sqlnet.ora points to the correct wallet and auto-login is enabled.
I am wondering if there is another port or socket that the oracle wallet or DBlinks uses that the network could possibly be blocking. We have no DBA so pretty much we are stuck on trying to figure this out.
Sorry for the long post.ORA-28759: Failure to Open File
Cause: The system could not open the specified file. Typically, this error occurs because the wallet cannot be found.
Action: Check the following:
•Ensure that the correct wallet location is specified in the sqlnet.ora file. This should be the same directory location where you saved the wallet.
•Enable Oracle Net tracing to determine the name of the file that cannot be opened and the reason.
•Ensure that auto login was enabled when you saved the wallet. -
AP1200 dual SSID's with 128 bit encryption
I trying to setup a AP1200 radio with two different SSID's with encryption.
Each SSID must use a different 128 bit WEP encryption.
Both SSID's must have simultaneous access to the wireless radio.
I get the client & radio associated but can not pass
data. And the Clients Link Speed is listed at 1Mbps.
Any help on the would be greatly appreciated.I too have tried this (multiple SSIDs with multiple wep keys). After re-reading the document pointed to in the previous reply I still do not know how to set multiple WEP keys and assign them to the SSIDs. The document doesn't mention WEP keys at all.
Anone have a sample config using more than 1 WEP key and multiple SSIDs?
michael -
TKIP or TKIP w/ 128 bit WEP?
Can someone explain the difference between the cipher TKIP and the cipher TKIP w/ 128bit WEP? I thought you got a key when you selected TKIP...
Thanks in advance.
David BeaverThank you. So then it is better to use just TKIP as opposed to TKIP w/128bit WEP? I am assuming that by using TKIP w/ 128 bit WEP, that WEP has the added cipher to help protect it from attacks.
The reason I ask all of these questions is because I am in the beginning stages of a hospital wireless deployment and want to know the in's and out's of best practice security methods.
Is there a page on the Cisco website that details TKIP, and the details of how it works?
Thanks again for your input. I am so thrilled to have a resource like this to help me when I get in over my head.
David Beaver
Internetwork Engineering -
Hi,
I'm new to oracle and am supposed to install/download the Oracle Wallet for Linux. Does this exist? Have been searching around OTN without any success. If someone could point me to the correct link I'd appreciate it.
ThanksHi,
You can create the Oracle Wallet using the Oracle Wallet Manager. On Windows it is under Programs -> Oracle -> Integrated Management Tools on your Start Menu, and in Linux or other Unices you just need to execute owm. I hope this helps. -
Hi folks,
I'm trying to enable SSL on my 12.1.1 system, but I've got a bit of a problem.
I've already logged a SR on this, so I already know that you cannot use SHA2 SSL certificates with Oracle Wallet Manager 10.1.0.5, which is part of the 10.1.3 tech stack. I started the SR on the EBS side, but it was passed on to the security group, and closed there. My question is, is there something that I don't know? Is there an upgrade path in 12.1.x that would include an upgrade to the OWM, or is there some sort of workaround? I'll be opening another SR tomorrow, but wanted to see if I was missing something simple.
We have an internal certificate server (Microsoft AD), and the root certificate, which I need to import, is SHA2. I'm being told that they cannot generate a SHA1 root certificate, and would have to stand up another certificate authority. OWM 10.1.0.5 can't handle SHA2, so I'm stuck.
Anybody been there done that?
Thanks very much,
-Adam vonNiedaI'm trying to enable SSL on my 12.1.1 system, but I've got a bit of a problem. What kind of problems?
I've already logged a SR on this, so I already know that you cannot use SHA2 SSL certificates with Oracle Wallet Manager 10.1.0.5, which is part of the 10.1.3 tech stack. I started the SR on the EBS side, but it was passed on to the security group, and closed there. My question is, is there something that I don't know? Is there an upgrade path in 12.1.x that would include an upgrade to the OWM, or is there some sort of workaround? I'll be opening another SR tomorrow, but wanted to see if I was missing something simple.
We have an internal certificate server (Microsoft AD), and the root certificate, which I need to import, is SHA2. I'm being told that they cannot generate a SHA1 root certificate, and would have to stand up another certificate authority. OWM 10.1.0.5 can't handle SHA2, so I'm stuck. I am not sure if SHA2 is certified with EBS R12 so you might need to ask this question to Oracle Support. According to the following docs, SHA1 can be used with no issues.
Enabling SSL in Oracle E-Business Suite Release 12 [ID 376700.1] To BottomTo Bottom
SSL Primer: Enabling SSL in Oracle E-Business Suite Release 12 (Trial Certificate Example) [ID 1425103.1]
Thanks,
Hussein -
Connect Non-SAP Oracle db (32bit) in sql 2005 (64 bit) using linked server
Hi,
I am connecting Oracle 10g database from SQL 2005 using linked server, in which i get the error
"Cannot initialize the data source object of OLE DB provider "MSDAORA" for linked server "L2ORACLE".
OLE DB provider "MSDAORA" for linked server "L2ORACLE" returned message "Oracle client and networking components
were not found. " (Microsoft SQL Server, Error: 7303)
SAP Server with sql 2005 db is in 64 bit server / Windows 2003
Non-SAP Oracle 10g is in 32 bit windows 2003 server.
i have installed Oracle 64 bit client in the SAP Server and also copied the 64 bit version of dboraslib.dll to the DIR_LIBRARY path. I am able to view the oracle tables in the oracle client.
But, when i create the linked server, it gives the above error.
If i install 32 bit version of Oracle client in the SAP Server, i am able to create the linked server in the db level, but, it says "Work Process restarted, session terminated" message in the Z program in SAP.
The same works in the test environment where both are 32 bit servers. problem is when SAP server is in 64 bit and non sap is in 32 bit.
Please suggest.
Thanks and Regards,
Nagu"Cannot initialize the data source object of OLE DB provider "MSDAORA" for linked server "L2ORACLE".
OLE DB provider "MSDAORA" for linked server "L2ORACLE" returned message "Oracle client and networking components
were not found. " (Microsoft SQL Server, Error: 7303)
check the workprocess traces for errors (and/or SM21). It seems that the system is "not aware" that an Oracle client is installed.
64bit programs can´t load 32bit libraries/DLLs that´s why the workprocess dumps when you use the 32bit client.
Markus -
Conn problem SQl Server 64 Bit to Oracle 32 bit using SSIS packages
Hi,
I am facing the problem with connection SQL(64 bit) to Oracle(32 bit).
Please give me the solution/guide in right direction.
Environment is
S1-----> DBServer : 64 bit Windows Server 2003 Enterprise Edition, 64 Bit SQl Server EE, 64 Bit Oracle 10g Client
S2----->.AppServer :32 bit Windows Server 2003 Enterprise Edition, IIS, 32 Bit Oracle 10g Client & Server DB
I have doubt like....
1.Can i install 32 bit oracle also at (S1) 64 bit SQL Server(SSIS)
or only 64 bit oracle?
2.Running command line for SSIS packages at S1
i am unable to connect S1---->S2 using SSIS packages?
How can i solve this problem? pl give steps for going right direction.
Thanks
JOHN
[email protected]Fabio D'Alfonso wrote:
Hi,
I was setting up VMware vCenter 4.1 (probably the only well known and largely used product with this lethal mix) and needed to setup an ODBC access to Oracle on the 32 bit side of Windows to setup the Update Manager server component, which is still a 32 bit application)
The problem with Oracle configuration is that in no way I found a 32 bit ODBC registered driver after the setup (of the 32 bit client and the 64 database server). I tried some third party driver for oracle (e.g. easysoft).They registered in the 32 bit ODBC manager but they never got a successful connection.
Also if this vCenter requirement is questionable (more questionable considering that the setup of this 32 component is not allowed on a 32 separate OS, not because it is separate but because is a 32 bit OS) I would get it working.
Could suggest a way to get this working?
Thanks
Fabio D'AlfonsoWhen you install the Oracle client software on Windows (which is necessary to support ODBC, as the Oracle ODBC driver sits on top of the native client software) the ODBC driver is NOT installed by default. You have to go back and do a "custom" install and select the "Windows components". -
Unable to import the user certificate into the Oracle Wallet Manager
Hi,
I am configuring the External Authentication plugin using the password filters.
i am using the version 10.1.0.5.0 version of Oracle Wallet manager
inorder to do that i am enabling the SSL mode.
to enable the SSL mode i followed the some steps in OWM and OCA admin and user console.
when i approved a certificate as admin and importing to the Oracle Wallet Manager, i got an error that
User Certificate Installation failed.
Possible errors:
- Input was not a valid certificate
- No matching certificate request found
- CA certificate needed for certificate chain not found.
Please install it first
can anyone help me how to resolve this problem.hi,
thanks for your reply pramod
I tried to import the two certificate files(rootca.crt and server.crt). but i am got the same error.
what may be the problem. -
Issues with using utl_http with Oracle Wallet
Hello Everyone,
We are experimenting with Oracle wallet and utl_http and are attempting to do an https transfer and we are facing some problems. I will appreciate your help greatly if you can advise on what could be wrong. We are on db version 10.2.0.1 and Unix HP-UX. The intention ping an https url and get a simple 200 response. Future development would include get/post XML documents from that url and other interesting stuff. I understand that utl_http with Oracle wallet can be used for this purpose.
The wallet has been created and the ewallet.p12 exists. We downloaded the SSL certificate from the url's website and uploaded into the wallet.
Everything works if I put in a url with plain http. However, it does not work with an HTTP*S* url.
With HTTPS when I run the below code I get the following error. Again, greatly appreciate your time and help because this is the first time we are using Oracle wallet manager and do not know where to go from here.
ORA-29273: HTTP request failed
ORA-06512: at "SYS.UTL_HTTP", line 1029
ORA-29268: HTTP client error
declare
url varchar2(225);
req utl_http.req;
resp utl_http.resp;
my_proxy BOOLEAN;
name varchar2(2000);
value varchar2(2000);
V_proxy VARCHAR2(2000);
v_n_proxy varchar2(2000);
v_msg varchar2(100);
v_len PLS_INTEGER := 1000;
BEGIN
-- Turn off checking of status code.
utl_http.set_response_error_check(FALSE);
--Set proxy server
utl_http.set_proxy('my-proxy');
utl_http.set_wallet('file:<full Unix path to the wallet on DB server>','wallet998');
req := utl_http.begin_request('https://service.ariba.com/service/transaction/cxml.asp');
--Set proxy authentication
utl_http.set_authentication(req, 'myproxyid', 'myproxypswd','Basic',TRUE); -- Use HTTP Basic
resp := utl_http.get_response(req);
FOR i IN 1..utl_http.get_header_count(resp) LOOP
utl_http.get_header(resp, i, name, value);
dbms_output.put_line(name || ': ' || value);
END LOOP;
utl_http.end_response(resp);
exception
when others then
dbms_output.put_line(sqlerrm);
END;I tried this using plsql ...
declare
SOAP_URL constant varchar2(1000) := 'http://125.21.166.27/cordys/com.eibus.web.soap.Gateway.wcp?organization=o=WIPRO,cn=cordys,o=itgi.co.in';
request UTL_HTTP.req;
begin
dbms_output.put_line('Begin Request');
request := UTL_HTTP.begin_request(SOAP_URL,'POST',UTL_HTTP.HTTP_VERSION_1_1);
dbms_output.put_line('After Request');
exception
when others then
dbms_output.put_line('Error : '||sqlerrm);
end;The output was ...
Begin Request
Error : ORA-29273: HTTP request failed
ORA-06512: at "SYS.UTL_HTTP", line 1029
ORA-12535: TNS:operation timed outIt seems to be an issue with the webservice, plz check if its available & allowing requests. -
Oracle Wallet Manager won't allow me to create a certificate request
Hello,
I am trying to setup my installation with SSL, I am trying to create a certificate request on Oracle Wallet Manager and I keep getting this error:
"Could not create certificate request. Please check user information"
I am entering the following information:
Common Name: portal.grupoalsea.com.mx
Organizational Unit: Desarrollo
Organization: Sistema Integral de Administracion, S.A. de C.V.
Locality/City: Distrito Federal
State/Province: Mexico
Country: Mexico
Key Size: 1024 bits
Why could this be happening? Does Oracle Wallet Manager go and look for my info some place? Common Name is the name for my site on WebCache, which is in turn mapped to the HTTP Server called Mservicio.localdomain.
At this point, I have also tried setting the Common Name to other values, like the name of my HTTP Server, the name of my HTTP server without the "localdomain", but I still get the same message.
Any help will be really appreciated!!!!Problem was due to a bug that won't allow to enter commas in Organization Name. All we needed to do is remove the comma from the Organization name and the certificate was correctly created.
Maybe you are looking for
-
URGENT( PNP LDB SELECTION SCREEN )
hiiiii, can anyone tell about the field PNPDISBD of pnp LDB in sap-hr , and why it is used. Is There any field on selection screen related to this when we use pnp LDB.
-
Saving and restoring list selections
I've got a list control in a popup window, supplied by a dataProvider. The user makes selections, clicks OK, and the selections are processed -- it all works fine. However, since it's a popup window, when it's closed the SELECTION is lost. When the w
-
Load of data to ODS or Info cube
Hi Experts, Iam reading the forum from couple of days to work for real time.I have few questions which i dint get exact answer or I might not understood about that.Questions are: 1.What is exact difference between full update and intializ
-
Recoverable interchange processing is not working?
Hi All, Here i am passing 3 values, 2nd value is incorrect but 3rd value is corect but i am unable to skip the second value and it is not executing 3rd value. ThankQ Chinna
-
USB 2.0 Problem on MSI Neo4-F
Hi, I'm new here but anyway, I justed installed my second new system about a week ago (stats in sig) and everything has gone well except for my USB connections. It seems that while my USB ports (both front-side and rear) are functioning correctly, I