SSL Accelerated Services

Hi All,
I'm about to create the first SSL accelerated services for my customer and need to confirm a design point in advance of my deployment window.
I have one *.xyz.com wildcard domain and server port and 2 certificates.  One of the certs is for an interim environment and the other for the main environment which is not yet live.  Can I associate both certificates to the same wildcard domain & port?  I'd ideally like to do this to allow for a seamless transition between the two environments or do I need to delete the interim cert and install the main one on the transition date?
Thanks
Claire

I dont think you can associate both certificates to the same wild card domain & port. You can use one at a time.

Similar Messages

  • SSL Accelerated Service and device groups

    I have a need to set up SSL accelerated services on a data center WAE and one edge WAE. In reading through the Cisco Wide Area Application Services SSL Application Optimiser Deployment Guide (2010), it states that best practice is to create an SSL device group and configure the SSL service and generate the keys through that group.
    Simple question:  Should only the data center WAE be placed in that group, or should also the edge WAE be in the group?  The devices are running 4.3.3.

    Only the data center wae's need to be placed in the SSL device group.
    Regards
    -Smita

  • WAAS statistics for SSL accelerated services

      Hi all,
    the customer has configured two SSL accelerated services on the core WAVEs. He would like to monitor both these services separatelly. He uses SSL accelerated report, but there is summary statistics from both services. Is possible to create an application per SSL service for the collection statistics? For example: when I will have two SSL accelerated services ssl1 and ssl2, is possible to monitor statistics for ssl1 and monitor statistics for ssl2?
    Thank you
    Roman

    I dont think you can associate both certificates to the same wild card domain & port. You can use one at a time.

  • Can I pilot SSL acceleration single subnet and exclude SSL acceleration on rest of network.

    I have a large WAAS deployment and would like test SSL acceleration on a single regional IP subnet pointing to the main Data Centre all in the same device group. The SSL feature seems to be either on/off per host/IP Address. I would like to do the rollout SSL acceleration in a phased manner if possible.                  

    Hi,
    Cisco WAAS has an option to create self-signed certificates and private keys/ Generate certificate signing request (Our own CA) or this can imported from existing certificate and key if we have them.
    When a connection is requested, the WAN optimization device in the data center splits the original SSL connection from the client to the SSL server into two SSL connections. To the client the connection appears as the SSL server, and to the SSL server it appears as the SSL client. To act as the SSL server, the data center WAN optimization device needs an authentication certificate for each SSL service it is optimizing. When the WAN optimization device intercepts a connection request from a client, it uses the SSL server IP address/domain name to associate the certificate with the client.
    You can refer below link for configuring the SSL and moreover you can view the white paper for example
    http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v501/configuration/guide/policy.html#wp1191888

  • How do I use an SSL Accelerator with iWS 6?

    I have an application that uses iWS 6 sp2 and iAS 6 sp4. The web server exposes a https port. I can get this port to work fine with a certificate requested against the internal module. When I use the module supplied by the SSL accelerator (Sun Crypto Accelerator 1) I can install and view a certificate, but I cannot start the web server. I get the following error in my logs:
    [18/Mar/2002:15:57:17] failure ( 2820): Invalid configuration: File /usr/local/iplanet/servers/https-www.exsel.org.uk/config/server.xml, line 22, column 390: SEC_ERROR_BAD_DER - Certificate is improperly DER encoded : unable to find certificate Server-Cert
    I can see a certificate by this name in the cerfticate database for the additional module. I can view it and it looks good (I'm generating my own certificates at the moment - so I know that the internal and external certificates were generated in the same way).
    Has anyone any experience of using this combination of things?

    I think you are getting your certificates crossed up some how. "Server-Cert" is normally the name of the internal certificate. See what the name of the one installed on your accelerator is and change the name in server.xml to match that. Be sure to backup up all your files first!

  • Is it possible to view individual SSL-proxy service usage (TPS)?

    Hi,
    Can the ACE provide any detail above and beyond just the overall ssl-connection rate for a particular context?
    I have an ACE with two contexts and multiple ssl-proxy services configured within each and it would be really helpful to know the ssl-connection rate associated with each service (current, average, peak, etc) as I've got the issue where the SSL resource limit for one of the contexts has been reached and I don't know which service has jumped up in usage;-
    Allocation
    Resource Current Peak Min Max Denied
    ssl-connections rate 0 250 250 250 351
    I can set up custom MIB pollers based on OID values within our SolarWinds network monitoring system so even if the information isn't directly available through the ACE CLI but has an associated OID I'd be grateful for the info if any one knows it (or even just the OIDs that contain the connection rate values from the 'sh resource usage' command so I can graph the overall usage against date/time within SolarWinds).
    Thanks
    Matthew

    Matthew,
    I do not know the OID to poll the service-policy info.
    But if you do a 'show service-policy ' at regular interval and compare the hitcon, you can compute the connection rate for each service policy individually.
    Gilles.

  • ORA-29532 error when invoking SSL web services using UTL_DBWS

    Web Service gurus,
    The WSDL for web services is as follows -
    <definitions name="Webservice" targetNamespace="http://webservice.airclic.com/">

    <types>

    <xs:schema targetNamespace="http://webservice.airclic.com/" version="1.0">
    <xs:element name="Exception" type="tns:Exception"/>
    <xs:element name="listenForEvents" type="tns:listenForEvents"/>
    <xs:element name="listenForEventsResponse" type="tns:listenForEventsResponse"/>
    <xs:element name="sendAuthenticationResponse" type="tns:sendAuthenticationResponse"/>
    <xs:element name="sendAuthenticationResponseResponse" type="tns:sendAuthenticationResponseResponse"/>
    <xs:element name="upsertTask" type="tns:upsertTask"/>
    <xs:element name="upsertTaskResponse" type="tns:upsertTaskResponse"/>

    <xs:complexType name="upsertTask">

    <xs:sequence>
    <xs:element minOccurs="0" name="task" type="tns:Task"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="Task">

    <xs:complexContent>

    <xs:extension base="tns:PlatformObject">

    <xs:sequence>
    <xs:element minOccurs="0" name="status" type="tns:status"/>
    <xs:element minOccurs="0" name="assignee" type="xs:string"/>
    <xs:element minOccurs="0" name="assigneeUserId" type="xs:string"/>
    <xs:element minOccurs="0" name="name" type="xs:string"/>
    <xs:element minOccurs="0" name="type" type="xs:string"/>
    <xs:element minOccurs="0" name="creationTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="updateTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="startTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="endTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="source" type="tns:source"/>
    <xs:element minOccurs="0" name="notes" type="xs:string"/>
    <xs:element minOccurs="0" name="priority" type="xs:int"/>
    <xs:element minOccurs="0" name="penalized" type="xs:boolean"/>
    <xs:element minOccurs="0" name="hasSLA" type="xs:boolean"/>
    <xs:element minOccurs="0" name="location" type="tns:Location"/>
    <xs:element minOccurs="0" name="windowStartTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="windowEndTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="signee" type="xs:string"/>
    <xs:element minOccurs="0" name="signature" type="xs:base64Binary"/>
    <xs:element minOccurs="0" name="customerId" type="xs:string"/>
    <xs:element minOccurs="0" name="travelTime" type="xs:int"/>
    <xs:element minOccurs="0" name="expirationTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="parentId" type="xs:long"/>
    <xs:element minOccurs="0" name="externalTimezone" type="xs:string"/>
    <xs:element minOccurs="0" name="localTimeOffset" type="xs:long"/>
    <xs:element minOccurs="0" name="consignee" type="xs:string"/>
    <xs:element minOccurs="0" name="assignmentWindowStartTimestamp" type="xs:long"/>
    <xs:element minOccurs="0" name="assignmentWindowEndTimestamp" type="xs:long"/>
    </xs:sequence>
    </xs:extension>
    </xs:complexContent>
    </xs:complexType>

    <xs:complexType name="PlatformObject">

    <xs:sequence>
    <xs:element name="id" type="xs:string"/>
    <xs:element name="externalId" type="xs:string"/>
    <xs:element name="revision" type="xs:long"/>
    <xs:element name="platformDateCreated" type="xs:dateTime"/>
    <xs:element name="platformDateUpdated" type="xs:dateTime"/>
    <xs:element name="objectName" type="xs:string"/>
    <xs:element maxOccurs="unbounded" name="extendedAttributes" type="tns:ExtendedAttribute"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="Location">

    <xs:sequence>
    <xs:element minOccurs="0" name="name" type="xs:string"/>
    <xs:element minOccurs="0" name="description" type="xs:string"/>
    <xs:element minOccurs="0" name="type" type="xs:string"/>
    <xs:element minOccurs="0" name="address" type="tns:Address"/>
    <xs:element minOccurs="0" name="position" type="tns:Position"/>
    <xs:element minOccurs="0" name="geofenceId" type="xs:long"/>
    <xs:element minOccurs="0" name="capcity" type="xs:int"/>
    <xs:element minOccurs="0" name="contact" type="xs:string"/>
    <xs:element minOccurs="0" name="email" type="xs:string"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="Address">

    <xs:sequence>
    <xs:element minOccurs="0" name="addressLine" type="xs:string"/>
    <xs:element minOccurs="0" name="addressLine2" type="xs:string"/>
    <xs:element minOccurs="0" name="city" type="xs:string"/>
    <xs:element minOccurs="0" name="secondaryCity" type="xs:string"/>
    <xs:element minOccurs="0" name="subdivision" type="xs:string"/>
    <xs:element minOccurs="0" name="postalCode" type="xs:string"/>
    <xs:element minOccurs="0" name="country" type="xs:string"/>
    <xs:element minOccurs="0" name="phone" type="xs:string"/>
    <xs:element minOccurs="0" name="freeform" type="xs:string"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="Position">

    <xs:sequence>
    <xs:element name="latitude" type="xs:double"/>
    <xs:element name="longitude" type="xs:double"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="ExtendedAttribute">

    <xs:sequence>
    <xs:element name="name" type="xs:string"/>
    <xs:element name="value" type="xs:anyType"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="upsertTaskResponse">

    <xs:sequence>
    <xs:element minOccurs="0" name="task" type="tns:Task"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="Exception">

    <xs:sequence>
    <xs:element minOccurs="0" name="message" type="xs:string"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="listenForEvents">

    <xs:sequence>
    <xs:element minOccurs="0" name="listenParams" type="tns:ListenParams"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="ListenParams">

    <xs:sequence>
    <xs:element name="queueName" type="xs:string"/>
    <xs:element name="resendLast" type="xs:boolean"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="listenForEventsResponse">

    <xs:sequence>
    <xs:element maxOccurs="unbounded" minOccurs="0" name="events" type="tns:Event"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="Event">

    <xs:sequence>
    <xs:element name="id" type="xs:string"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="AuthenticationRequestEvent">

    <xs:complexContent>

    <xs:extension base="tns:RequestEvent">

    <xs:sequence>
    <xs:element name="username" type="xs:string"/>
    <xs:element minOccurs="0" name="password" type="xs:string"/>
    </xs:sequence>
    </xs:extension>
    </xs:complexContent>
    </xs:complexType>

    <xs:complexType name="RequestEvent">

    <xs:complexContent>

    <xs:extension base="tns:Event">

    <xs:sequence>
    <xs:element name="correlationId" type="xs:string"/>
    <xs:element name="response" type="tns:Response"/>
    </xs:sequence>
    </xs:extension>
    </xs:complexContent>
    </xs:complexType>

    <xs:complexType name="Response">

    <xs:sequence>
    <xs:element name="correlationId" type="xs:string"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="AuthenticationResponse">

    <xs:complexContent>

    <xs:extension base="tns:Response">

    <xs:sequence>
    <xs:element name="success" type="xs:boolean"/>
    <xs:element name="username" type="xs:string"/>
    <xs:element minOccurs="0" name="password" type="xs:string"/>
    <xs:element minOccurs="0" name="firstName" type="xs:string"/>
    <xs:element minOccurs="0" name="lastName" type="xs:string"/>
    <xs:element minOccurs="0" name="email" type="xs:string"/>
    <xs:element minOccurs="0" name="active" type="xs:boolean"/>
    <xs:element minOccurs="0" name="timeZone" type="xs:string"/>
    <xs:element minOccurs="0" name="group" type="xs:string"/>
    <xs:element minOccurs="0" name="role" type="xs:string"/>
    <xs:element minOccurs="0" name="errorCode" type="xs:string"/>
    <xs:element minOccurs="0" name="errorMessage" type="xs:string"/>
    </xs:sequence>
    </xs:extension>
    </xs:complexContent>
    </xs:complexType>

    <xs:complexType name="DispatchEvent">

    <xs:complexContent>

    <xs:extension base="tns:Event">

    <xs:sequence>
    <xs:element name="type" type="tns:eventType"/>
    <xs:element minOccurs="0" name="previousTask" type="tns:Task"/>
    <xs:element name="changeTask" type="tns:Task"/>
    <xs:element minOccurs="0" name="newTask" type="tns:Task"/>
    </xs:sequence>
    </xs:extension>
    </xs:complexContent>
    </xs:complexType>

    <xs:complexType name="sendAuthenticationResponse">

    <xs:sequence>
    <xs:element minOccurs="0" name="authenticationResponse" type="tns:AuthenticationResponse"/>
    </xs:sequence>
    </xs:complexType>

    <xs:complexType name="sendAuthenticationResponseResponse">
    <xs:sequence/>
    </xs:complexType>

    <xs:simpleType name="status">

    <xs:restriction base="xs:string">
    <xs:enumeration value="NULL"/>
    <xs:enumeration value="UNASSIGNED"/>
    <xs:enumeration value="ASSIGNED"/>
    <xs:enumeration value="RECEIVED"/>
    <xs:enumeration value="ACCEPTED"/>
    <xs:enumeration value="REJECTED"/>
    <xs:enumeration value="IN_PROGRESS"/>
    <xs:enumeration value="POSTPONED"/>
    <xs:enumeration value="COMPLETED"/>
    <xs:enumeration value="CANCELED"/>
    <xs:enumeration value="CLEARED"/>
    <xs:enumeration value="EXPIRED"/>
    </xs:restriction>
    </xs:simpleType>

    <xs:simpleType name="source">

    <xs:restriction base="xs:string">
    <xs:enumeration value="NULL"/>
    <xs:enumeration value="DISPATCH"/>
    <xs:enumeration value="SYSTEM"/>
    <xs:enumeration value="ENDUSER"/>
    </xs:restriction>
    </xs:simpleType>

    <xs:simpleType name="eventType">

    <xs:restriction base="xs:string">
    <xs:enumeration value="TaskCreated"/>
    <xs:enumeration value="TaskUpdated"/>
    <xs:enumeration value="TaskAssigned"/>
    <xs:enumeration value="TaskDeleted"/>
    <xs:enumeration value="TaskStatusChanged"/>
    <xs:enumeration value="TaskConflicted"/>
    </xs:restriction>
    </xs:simpleType>
    </xs:schema>
    </types>

    <message name="Webservice_listenForEvents">
    <part element="tns:listenForEvents" name="listenForEvents"/>
    </message>

    <message name="Webservice_sendAuthenticationResponseResponse">
    <part element="tns:sendAuthenticationResponseResponse" name="sendAuthenticationResponseResponse"/>
    </message>

    <message name="Webservice_sendAuthenticationResponse">
    <part element="tns:sendAuthenticationResponse" name="sendAuthenticationResponse"/>
    </message>

    <message name="Webservice_upsertTaskResponse">
    <part element="tns:upsertTaskResponse" name="upsertTaskResponse"/>
    </message>

    <message name="Exception">
    <part element="tns:Exception" name="Exception"/>
    </message>

    <message name="Webservice_upsertTask">
    <part element="tns:upsertTask" name="upsertTask"/>
    </message>

    <message name="Webservice_listenForEventsResponse">
    <part element="tns:listenForEventsResponse" name="listenForEventsResponse"/>
    </message>

    <portType name="Webservice">

    <operation name="listenForEvents" parameterOrder="listenForEvents">
    <input message="tns:Webservice_listenForEvents"/>
    <output message="tns:Webservice_listenForEventsResponse"/>
    <fault message="tns:Exception" name="Exception"/>
    </operation>

    <operation name="sendAuthenticationResponse" parameterOrder="sendAuthenticationResponse">
    <input message="tns:Webservice_sendAuthenticationResponse"/>
    <output message="tns:Webservice_sendAuthenticationResponseResponse"/>
    <fault message="tns:Exception" name="Exception"/>
    </operation>

    <operation name="upsertTask" parameterOrder="upsertTask">
    <input message="tns:Webservice_upsertTask"/>
    <output message="tns:Webservice_upsertTaskResponse"/>
    <fault message="tns:Exception" name="Exception"/>
    </operation>
    </portType>

    <binding name="WebserviceBinding" type="tns:Webservice">
    <soap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http"/>

    <operation name="listenForEvents">
    <soap:operation soapAction=""/>

    <input>
    <soap:body use="literal"/>
    </input>

    <output>
    <soap:body use="literal"/>
    </output>

    <fault name="Exception">
    <soap:fault name="Exception" use="literal"/>
    </fault>
    </operation>

    <operation name="sendAuthenticationResponse">
    <soap:operation soapAction=""/>

    <input>
    <soap:body use="literal"/>
    </input>

    <output>
    <soap:body use="literal"/>
    </output>

    <fault name="Exception">
    <soap:fault name="Exception" use="literal"/>
    </fault>
    </operation>

    <operation name="upsertTask">
    <soap:operation soapAction=""/>

    <input>
    <soap:body use="literal"/>
    </input>

    <output>
    <soap:body use="literal"/>
    </output>

    <fault name="Exception">
    <soap:fault name="Exception" use="literal"/>
    </fault>
    </operation>
    </binding>

    <service name="Webservice">

    <port binding="tns:WebserviceBinding" name="WebservicePort">
    <soap:address location="https://webservice.mp.b.airclic.com:443/webservice/product/fieldservice/v1/Webservice"/>
    </port>
    </service>
    </definitions>
    Following is the pl/sql code using UTL_DBWS
    DECLARE
    l_service UTL_DBWS.service;
    l_call UTL_DBWS.call;
    l_wsdl_url VARCHAR2(32767);
    l_namespace VARCHAR2(32767);
    l_service_qname UTL_DBWS.qname;
    l_port_qname UTL_DBWS.qname;
    l_operation_qname UTL_DBWS.qname;
    l_input_params UTL_DBWS.anydata_list;
    soap_request xmltype;
    l_result xmltype;
    result_output VARCHAR2(32767);
    BEGIN
    l_wsdl_url := 'https://webservice.mp.b.airclic.com/webservice/product/fieldservice/v1/Webservice?WSDL';
    l_namespace := 'http://webservice.airclic.com/';
    dbms_output.put_line ('1');
    l_service_qname := UTL_DBWS.to_qname(l_namespace, 'Webservice');
    dbms_output.put_line ('2');
    l_port_qname := UTL_DBWS.to_qname(l_namespace, 'WebservicePort');
    dbms_output.put_line ('3');
    l_operation_qname := UTL_DBWS.to_qname(l_namespace, 'sendAuthenticationResponse');
    dbms_output.put_line ('4');
    l_service := UTL_DBWS.create_service (
    wsdl_document_location => URIFACTORY.getURI(l_wsdl_url),
    service_name => l_service_qname);
    dbms_output.put_line ('5');
    l_call := UTL_DBWS.create_call (
    service_handle => l_service,
    port_name => l_port_qname,
    operation_name => l_operation_qname);
    dbms_output.put_line ('6');
    UTL_DBWS.SET_PROPERTY(l_call,'USERNAME',<username to access wsdl>);
    dbms_output.put_line ('7');
    UTL_DBWS.SET_PROPERTY(l_call,'PASSWORD',<password>);
    dbms_output.put_line ('8');
    utl_dbws.set_property(l_call,'OPERATION_STYLE', 'document');
    dbms_output.put_line ('9');
    soap_request := xmltype.createxml('<?xml version="1.0" encoding="UTF-8"?>
    <S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
    <S:Body>
    <ns2:sendAuthenticationResponse xmlns:ns2="http://webservice.airclic.com/">
    <authenticationResponse>
    <correlationId>4646735802698040711:[email protected]</correlationId>
    <success>true</success>
    <username>changlanih</username>
    <password>abcd1234</password>
    <firstName>hero</firstName>
    <lastName>changlani</lastName>
    <email>[email protected]</email>
    <active>true</active>
    <timeZone>eastern</timeZone>
    <group>Northeast</group>
    <role>Service Manager</role>
    </authenticationResponse>
    </ns2:sendAuthenticationResponse>
    </S:Body>
    </S:Envelope>');
    l_result := UTL_DBWS.invoke ( l_call,soap_request);
    UTL_DBWS.release_call (call_handle => l_call);
    UTL_DBWS.release_service (service_handle => l_service);
    result_output := l_result.getstringval;
    dbms_output.put_line('web svc output ===> ' || result_output);
    END;
    Following is the error from pl/sql code
    1
    2
    3
    4
    DECLARE
    ERROR at line 1:
    ORA-29532: Java call terminated by uncaught Java exception: java.lang.IllegalAccessException: error.build.wsdl.model: oracle.j2ee.ws.common.tools.api.WsdlValidationException:
    Failed to read WSDL from https://webservice.mp.b.airclic.com/webservice/product/fieldservice/v1/Webservice?WSDL:
    HTTP connection error code is 401
    ORA-06512: at "SYS.UTL_DBWS", line 193
    ORA-06512: at "SYS.UTL_DBWS", line 190
    ORA-06512: at line 20
    Notes
    The program fails at following line of code -
    l_service := UTL_DBWS.create_service (
    wsdl_document_location => URIFACTORY.getURI(l_wsdl_url),
    service_name => l_service_qname);
    Web services are SSL.
    The WSDL is at https location and needs username/password for access. The username/password to access WSDL are set using UTL_DBWS.SET_PROPERTY
    To access the SSL site, I have imported the CA in Oracle Wallet, JVM home and JDK home.
    Can anyone tell me what am I doing wrong here. I am not able to even establish connection to web service host.
    This is very frustrating - Oracle has no examples on how to access a SSL Web Service (that needs authentication) from Database.
    This is effecting our project deadlines ......... any help would be greatly appreciated.
    Thanks.

    Hi,
    I presume your Web Service needs HTTP (BASIC?) Authentication.
    All this needs is setting the following 2 properties, which as can be seen, you are setting....
    UTL_DBWS.set_property(l_call, 'USERNAME', '<username>');
    UTL_DBWS.set_property(l_call, 'PASSWORD', '<pwd>');
    This should work as long as your DBWS Callout Utility was downloaded from OTN after June 2008, and it's version is atleast 10.1.3.1.
    Following is a sample code snippet that was tested successfully for this :
    Declare
    l_service UTL_DBWS.service;
    l_call UTL_DBWS.call;
    l_result sys.XMLTYPE;
    l_request sys.XMLTYPE;
    BEGIN
    l_service := UTL_DBWS.create_service(null);
    l_call := UTL_DBWS.create_call(l_service);
    UTL_DBWS.set_target_endpoint_address(l_call, 'http://xxx.oracle.com:8888/basic/MyWebService1SoapHttpPort');
    UTL_DBWS.set_property(l_call, 'USERNAME', 'username');
    UTL_DBWS.set_property(l_call, 'PASSWORD', 'pwd');
    UTL_DBWS.set_property(l_call, 'OPERATION_STYLE', 'document');
    UTL_DBWS.set_property(l_call, 'SOAPACTION_USE', 'true');
    UTL_DBWS.set_property(l_call, 'SOAPACTION_URI', 'http://xxx.oracle.com:8888/basic/MyWebService1SoapHttpPort');
    l_request := XMLTYPE('<Z_CENTRICITY_GET_DOCLIST
    xmlns:urn="urn:sap-com:document:sap:rfc:functions">' ||
    '<I_INCLUDE_OLD_VERSIONS></I_INCLUDE_OLD_VERSIONS>' ||
    '<I_INSTITUTION>0001</I_INSTITUTION>' ||
    '<I_PATIENT_NR>0000000181</I_PATIENT_NR>' ||
    '</Z_CENTRICITY_GET_DOCLIST>');
    l_result := UTL_DBWS.invoke(l_call, l_request);
    UTL_DBWS.release_call (call_handle => l_call);
    UTL_DBWS.release_service (service_handle => l_service);
    EXCEPTION
    WHEN OTHERS THEN
    dbms_output.put_line(sqlcode || ' ' || sqlerrm);
    END;
    Hope this helps,
    Yogesh

  • SSL provider service is PI 7.1

    Hello
    We are moving the interfaces from PI 7.0 to PI 7.1 EHP1 and trying to apply SSL to PI 7.1 EHP1. We have created ssl certificate in the SSL key storage and now we want to activate this in SSL provider service.
    Now that there is no visual administrator in PI 7.1. So could you please let me know as where to find the SSL provide in new NWA. or the procedure for activating the same.
    Thanks in advance
    Kalyan

    Hi Kalyan,
    Log on NWA and then Configuration Management -> Certificates and Keys.
    Content -> Trusted CA
    Add here the public certificate and the ssl connection should work.
    Please see the below link, it might be useful to you.
    http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/content.htm
    Regards,
    Rajesh

  • EP6.0 SP15 SSL Accelerator card setup

    Hi
    SAP support the use of SSL Accelerator cards as per OSS Note 686293.  However, I can find no details on the configuration of how to set them up for the use with the SAP web server used in the SAP Portal.  The products appear to provide support out of the box for mainstream we servers (MS IIS, Apache etc) but don't indicate how they need to be configured to be used with SAP.
    Can anyone assist?  They're Cavium SSL Accelerator cards.
    Regards
    David

    Just got the bad news from SAP Support.
    Although the note indicates that EP6.0 supports the use of hw SSL accelerator cards - the note itself is "misleading".  The SSL Provider is part of the SAP sw shipment and there is no SAP ICC partner interface to certify the integration of SSL accelerators.  The only SAP solution for EP6.0 at this time is to use them in a SSL Reverse Proxy infont of the portal solution to offload the overhead of SSL before it hits the portal.  The reason I'm not using Webdispatcher is that I'm also trying to fulfill a requirement for standalone ITS on these same servers. Needless to say there are no dates set for when SSL Accelerator cards can be used with Netweaver stack DIRECTLY!!.
    SAP support message below for completeness (from SAP AG Developement Manager so can be taken as gospel) - hope it saves someone else time if thinking of going down this route.   <u>Please post reward points if you have found this information useful!</u>
    SAP Note 686293 is misleading. All releases of EP 6.0 do not support
    SSL hardware accelerators.
    The SSL provider is part of the SAP shipment and there is no SAP ICC
    partner interface to certify the integration of SSL accelerators.
    If you realy require SSL hardware accelerators you should use a
    standalone solution (SSL reverse proxy) to terminate the SSL connection
    in front of the EP system.
    Regards
    David Irwin

  • Urgent!! SRA gateway and SSL accelerator??

    I access url in portal destop, but it can not work.
    My gateway is working behind ssl accelerator, and gateway url is http://gateway.com, port is 880, external virtual host url is https://home.com. The profile platform.conf.default is like this,
    gateway.customurl=true
    gateway.httpurl=https://home.com:443
    gateway.virtualhost=gateway.com home.com
    but in desktop url http://www.sun.com is written to https://home.com/http://sun.com, but it canot be accessed.
    If I browse it like https://home.com/http://sun.com/, it work well.
    Please help me config it.
    Many Thanks
    Peter

    Thank you Jerry.
    We use the Radware's accelerator board that is one factory in china.
    The follows are the gateway profile list:
    gateway.cdm.cacheSleepTime=60000
    gateway.protocol=http
    gateway.jdk.dir=/usr/jdk/entsys-j2se
    gateway.userProfile.cacheCleanupTime=300000
    gateway.userProfile.cacheSize=1024
    gateway.external.ip=192.18.22.45
    gateway.logdelimiter=&&
    gateway.httpurl=https://home.com:443
    gateway.data.dir=/var/opt/SUNWps
    portal.server.instance=default
    gateway.port=880
    gateway.debug=on
    gateway.bindipaddress=192.18.20.33
    gateway.certdir=/etc/opt/SUNWps/cert/default
    gateway.host=gateway.com
    gateway.logging.password=RcyB48rxF7cxHv8As45shg\=\= Z0Wk2ebVID0XtY+eg30gsg\=\=
    gateway.sockretries=3
    gateway.enable.customurl=true
    gateway.userProfile.cacheSleepTime=60000
    gateway.enable.accelerator=true
    gateway.cdm.cacheCleanupTime=300000
    gateway.favicon=
    gateway.notification.url=notification
    gateway.httpsurl=
    portal.server.port=80
    gateway.virtualhost=portal.com 192.18.20.33 home.com
    gateway.allow.client.caching=true
    gateway.retries=6
    gateway.dsame.agent=http\://portal.com\:80/portal/RemoteConfigServlet
    portal.server.host=portal.com
    gateway.user=noaccess
    gateway.trust_all_server_certs=true
    gateway.debug.dir=/var/opt/SUNWps/debug
    portal.server.protocol=http
    gateway.ignoreServerList=true
    At first, the user has full access.
    We can login the portal server using https://home.com, and the urls also are written correctly, but when click the link like https://home.com/http://www.sun.com, there is not '/' at the end of this url, it can not work formally. But if I append '/' to the end of this url, and browse it in url address, it works well.
    Could you give me some advice?
    Many Thanks
    Peter

  • Hardware SSL Accelerator + JSSE

    Hi all,
    How can I use hardware SSL/TLS accelerator with java platform. The server part of application needs hardware SSL/TLS acceleration. I was looking for information how "access" hardware accelerator from java application. The result was that I need custom JCE Provider which can work with this piece of hardware. Ok this point is clear. So I start looking for hardware accelarators which provide JCE Provider. But I failed. The questions are:
    Did I understand correctly the mechanizm how use such piece of hardware?
    Which hardware SSL accelerators provide JCE Provider?
    Is somewhere universal JCE Provider which uses "external" SSL implementation e.g. OpenSSL (I was thinking about "bridge" between my application and hardware accelerator using external implementation)?
    Every advice welcome. thank you and have a nice day.

    Look into the mozilla.org's package jss. It is a C API
    with java
    interconnects (JNI) which will allow you to interface
    with hardware
    accelerators using PKCS#11...
    You will need to have a compiler!ok .. it looks good. but how exactly it works? How I exactly redirect SSL request from CPU to hardware SSL accelerator.
    I rather want to use standard JSSE from Java2 platform.
    thanks for advice.

  • SSL Acceleration between iPlanet and WLS

    I was wondering if anybody has successfully deployed a SSL accelerator card for SSL acceleration between iPlanet and WLS?

    This is a feature in the latest release, WebLogic Server 6.1.0
              <http://e-docs.bea.com/wls/docs61/////adminguide/nsapi.html#101168>. It is
              not available for WebLogic Server 5.1.0.
              Regards,
              -- Ian
              "Abhinandan" <[email protected]> wrote in message
              news:3ba5dfa9$[email protected]..
              > Can i get SSL communication between iPlanet and Weblogic 5.1? if yes then
              how??
              

  • What SSL accelerator and load-balancer does anyone recommend?

    Hi:
    I wanted to find out:
    Does anyone recommend SSL accelerator cards/boards or SSL accelerator appliances?
    What SSL accelerator and load balancer does aynone recommend to help 9iAS?

    Ana_Alm wrote:
    Hi there!
    I just downloaded and installed OS X Lion, and I'm loving it so far.
    However, I've seen that Mountain Lion will have some new features when it comes to social apps (what I call the ones that combine twitter, facebook, rss readers and so on).
    So, does anyone knows any cools apps for that? I'm currently using Socialite, that combines all those three, but it has a few issues I don't particularly like. Plus, I'm using Adium for a msn client. I'm also thinking about downloading that beta version of "Messages" that will be realeased on Mountain Lion.
    So, what do you think? Give me your ideas
    Thanks a lot in advance!
    As Mountain Lion has not been released to the public yet, then most of us have no idea which companies have updated the development of their Apps for  ML. It is in Development phase so any App you try is at your own risk.
    Good Luck
    Pete

  • 2-Way SSL Web Service AssertionError

    I am using weblogic 9.1 and 2-way ssl-based web services. The issue is that when a stand-alone client accesses the web services, via the BEA recommended way, a host of errors occurs. Initially I had the webserviceclient+ssl.jar on the client classpath in addition to the weblogic.jar which were both in my development lib directory, and worked from there. Here is the progression of errors:
    1. ClassDefNotFound exception: weblogic.xml.schema.binding.util.ClassUtil$ClassUtilException
    Resolution = added webservice.jar to classpath
    2. ClassDefNotFound exception: com.bea.xml.XmlException
    Resolution = added xbean.jar to classpath
    3. java.lang.AssertionError: java.io.IOException
    This was a difficult one to figure out. I tried running the test client from both my IDE and command-line, and I narrowed it down to a really weird issue. The only way I was able to get it to work was to include the absolute reference to the weblogic.jar in the classpath of the client. i.e. BEA_HOME/weblogic91/server/lib/weblogic.jar. If I had a relative reference to weblogic.jar, i.e. ../lib/weblogic.jar, the above assertion error was thrown.
    Can anyone shed some light on this? I need to have a stand-alone client run a 2-way ssl web service and this client should not be expected to have a full blown weblogic 9.1 install.
    Cheers.

    WLS 9 does not have a separate client jar. So sorry, in the near future we might have to stick to the requirement of using the weblogic.jar.
    Just FYI, I have submitted a two-way ssl sample in dev2dev.
    https://codesamples.projects.dev2dev.bea.com/servlets/Scarab?id=S3
    thanks
    Jong

  • SSL Accelerator hardware for WebLogic

    Hi All,
    Does any one know if WebLogic supports Sun SSL Crypto hardware, ie: SSL Accelerator
    hardware, Sun Part # X113A ?
    Thank You

    Hi Michael,
    Thank you very much for your help. I will keep checking the
    released version for SSL/Hardware support.
    Regards,
    Tuan
    Michael Young <[email protected]> wrote:
    Hi Tuan.
    The next major release of WLS due out this spring will have support for
    hardware SSL accelerators. I don't have any detail beyond what I just
    stated. Keep an eye out for the beta program for the WLS beta release.
    This is not the WLS 7.0 preview currently on
    http://commerce.bea.com/downloads/weblogic_server.jsp. The beta program
    should be out sometime in the next few weeks.
    Regards,
    Michael
    Tuan Phan wrote:
    Hello Michael,
    Thank you very much for your help. Does BEA have plan
    to support any hardware based SSL in the future, how soon ?
    Thank You
    Tuan Phan
    Michael Young <[email protected]> wrote:
    Hi.
    WLS does not currently work with hardware SSL accelerators.
    Regards,
    Michael
    Tuan Phan wrote:
    Hi All,
    Does any one know if WebLogic supports Sun SSL Crypto hardware,
    ie:
    SSL Accelerator
    hardware, Sun Part # X113A ?
    Thank You--
    Michael Young
    Developer Relations Engineer
    BEA Support
    Michael Young
    Developer Relations Engineer
    BEA Support

Maybe you are looking for

  • How can I move Logic settings from one machine to another?

    I have a plugin that works find on my desktop but not on my laptop. On the laptop, Musical typing" doesn't produce sound on a track that uses that plug, and I don't get sound when I connect the laptop to my MIDI keyboard. Works fine on desktop. I wan

  • What's the best way to create disk images?

    of 300GB  hard drives or partitions? Disk utility is failing for me with an input/output error. A typical example: I have a new HFS+ 500GB external FW 800 drive that I am using a destination. I will boot from my original 'install' DVD and then open u

  • How to trace the RevTrac carrying changes for a given system table?

    Hi everyone! In our company we have a case of a change no one in the team states to have done, therefore we do not know the RevTrac number that carries the changes. Currently, the development system is different from the QA, staging and production sy

  • Damaged Check Table for Crystal Reports

    We have written our own check register report and damaged checks do no show up. Can you tell me which table damaged checks are kept in so I can link to it? Thanks, Rob

  • Possible to assign apps to one device?

    I have an Iphone 4S and a Ipad 2 on the same account. Is it possible in iTunes to assign each app I have to either only my iPhone, or my iPad or both. I am tired of seeing apps I got for my Ipad end up also on my Iphone, and vice versa. btw, just not