Friday, October 7, 2011

Oracle/Sun Proxy server -Self signed certificate Installation

Oracle proxy server doesn't offer self signed certificate installation via GUI Admin console.
For creating a self signed certificate following method can be used


Change to instance config directory


Labserver# cd /opt/proxyserver40/proxy-server1/config


create certificate store

give a certificate store password

Labserver# /opt/proxyserver40/bin/proxy/admin/bin/certutil -N -d .
Enter a password which will be used to encrypt your keys.
The password should be at least 8 characters long,
and should contain at least one non-alphabetic character.

Enter new password:
Re-enter password:


Generate Self signed certificate

Replace -n MYCERT with your instance Name or FQDN of the site

Labserver# /opt/proxyserver40bin/proxy/admin/bin/certutil -S -x -s "CN=www.telstra.com.au" -n MYCERT -x -t "C,C,C" -d .
Enter Password or Pin for "NSS Certificate DB":

A random seed must be generated that will be used in the
creation of your key. One of the easiest ways to create a
random seed is to use the timing of keystrokes on a keyboard.

To begin, type keys on the keyboard until this progress meter
is full. DO NOT USE THE AUTOREPEAT FUNCTION ON YOUR KEYBOARD!


Continue typing until the progress meter is full:

|************************************************************|

Finished. Press enter to continue:


Generating key. This may take a few moments...


List self signed certificate

Labserver# /opt/proxyserver40/bin/proxy/admin/bin/certutil -L -d .

Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI

MYCERT Cu,Cu,Cu


Copy certificate to original certificate location

Labserver# ls -l *.db
-rw------- 1 root root 65536 Oct 4 23:21 cert8.db
-rw------- 1 root root 32768 Oct 4 23:21 key3.db
-rw------- 1 root root 32768 Oct 4 23:18 secmod.db
Labserver#

Stop proxy server

Labserver# ./stop
server has been shutdown

Copy Certificate to original Certificate location

cp cert8.db /opt/proxyserver40/alias/proxy-server1-Labserver-cert8.db
cp key3.db /opt/proxyserver40/alias/proxy-server1-Labserver-key3.db


Restart Proxy server

Labserver# /opt/proxyserver40/proxy-server1/start
Oracle iPlanet Proxy Server 4.0.14 B06/08/2010 05:46
Please enter password for "internal" token:
info: HTTP3072: [LS ls1] http://192.25.10.1:7081 ready to accept requests
startup: server started successfully
Labserver#
Posted by at

1 comment:

Shalini said...


Really Good blog post.provided a helpful information.I hope that you will post more updates like this.
Digital marketing company in Chennai

August 11, 2017 at 12:24 AM

Post a Comment

Subscribe to: Post Comments (Atom)