Register for Apps DBA Training
For Apps DBA Beginner's
  • Start From Here
  • Order of Apps Study
  • 11i Software
  • Apps Architecture
  • Install Apps 11i
  • Install Apps 11i Part II
  • Startup/Shutdown
  • Request Flow in Apps
  • Various TOP's
  • Cloning Basics
  • Cloning I
  • Cloning II
  • Autoconfig Basics
  • Autoconfig Config File
  • Template Files in Autoconfig
  • Discoverer Overview
  • Workflow Mailer in Apps
  • Printing Overview
  • Configuring Printers
  • Pasta Printing
  • Performance Overview
  • Install 10g Application Server
  • Apps DBA Certification
  • Common DBA Topics
  • Scared of RAC ?
  • Install RAC on your laptop part I
  • Step by Step build RAC part II
  • Step by Step install RAC using VMWare part III
  • Install Oracle RAC Database part IV
  • oraInventory Basics
  • Install Database 10.2.0.1
  • Upgarde DB to 10.2.0.2
  • Fusion
  • Is Fusion a conFusion ?
  • Fusion Middleware Overview I
  • Fusion Middleware Overview II
  • Application Integration Architecture
  • SOA Install Part I
  • SOA Install Part II
  • SOA Install Part III
  • Install BPEL Process Manager
  • Apps Integration OID/SSO
  • Management Qs for Apps Integration with SSO/OID
  • 25 things your DBA should know for Apps/SSO integration
  • Identity Management
  • COREid Overview
  • Oracle COREid or Idm & Access Mgmt overview
  • Installing Access Manager 10.1.4
  • WebGate request flow
  • Identity Manager Architecture
  • Installing Identity Manager
  • OAS-SSO Overview
  • OID Overview
  • OID Basics II
  • OID Cluster
  • OID Integration with Other LDAP Servers overview
  • Integrate OID with AD I
  • OID Replication Overview
  • Multi Master OID Replication
  • Migrate OID/SSO to new Host
  • Apps R 12
  • Socket or Servlet in R12
  • Startup/Shutdown Scripts in R12
  • Unified APPL_TOP
  • Apps R 12.0.1
  • Difference between 11i & R12 Technical
  • Prepare for R12 Installation
  • Install VMWare on Windows for Linux Install
  • Install Linux for Apps R12 Install
  • Install Apps R12 on Linux Virtual Machine
  • R12 Upgrade & database
  • R12 Fils System Changes
  • R12 Release Date
  • 10g Application Server
  • 10g AS Overview
  • Installing 10g AS
  • Start/Stop 10g AS
  • Web Cache Basics
  • Single Sign-On Overview
  • OID Overview
  • Cloning 10g AS
  • 10g AS Middle tier Cloning & Overview
  • OID Cluster Imp. Points
  • CPU Patch, Infra Tier
  • CPU Patch, Middle Tier
  • AS Guard / DR Overview
  • Oracle Apps 11i
  • My Site
  • Apps DBA Scripts
  • Apps DBA Interview Q's
  • 11i JVM's
  • Apps Training in India
  • 11i Health Check
  • Good Metalink Notes
  • About Me  
  • For Advanced Apps DBA
  • URL Firewall in DMZ Setup
  • Upgrade Apps to 11.5.10.2
  • Load Balancer Overview
  • Load Balancer Config
  • HTTP layer Load balancing in Apps 11i
  • Dataguard Overview
  • Configure Dataguard / Standby database
  • Standby Site for Apps 11i
  • How to change Hostname on Apps Instance
  • SSL Overview in Apps
  • Configure SSL to Web Server
  • Key Points for SSL in Apps
  • Reduce Patch Timing
  • Reduce Patch Timing II
  • Shared APPL_TOP Overview
  • Configure Shared APPL_TOP
  • 11i Database Upgrade I
  • 11i Database Upgrade II
  • Change Session TimeOut
  • Patching
  • Apps Patch Basics
  • Apps Patch Basics II
  • Apply Apps Patch
  • CPU Overview
  • Steps to Apply CPU Patch
  • CPU Patch on Infra Tier
  • CPU Patch on AS Middle Tier
  • Troubleshooting
  • Web Server TS Part I
  • Web Server TS Part II
  • CM Troubleshooting
  • 10g Discoverer with Apps
  • Discoverer Bascis in Apps
  • Discoverer 10g Upgarde Basics
  • Discoverer 10g Configuration Steps with 11i
  • Collaboration Suite
  • Collaboration Suite
  • Calendar Overview
  • Sync Calendar from Mobile I
  • Sync Calendar from Mobile II
  • OCS Mail Architecture
  • Apex / HTMLDB
  • Install Apex 2.2
  • Apex with SSO part I
  • Apex with SSO part II
  • SSO Authentication Schemes
  • Certification
  • Possible Certifications for DBA
  • Apps DBA Certification
  • 1Z0-311-OCA-10g OAS Overview
  • 1z0-312-OCP-10g OAS Overview
  • 1z0-312 - Managing Customization and Topology
  • 1z0-312 - Cloning and Staging OAS
  • Apps DBA Jobs
  • Working / Apps DBA in UK
  • Oracle Recruiting Apps DBA's
  • Apps DBA Jobs Updated Regularly
  • Apps Job at Satyam
  • Useful Links
  • Good Metalink Notes
  • petefinnigan's Oracle Security
  • Linux Basics
  • Atul Mehta's Oracle Links
  • Others
  • Apps DBA Training Institute
  • 1 Year Journey of this Blog
  • How To ?
  • Change APPS Password
  • Preserve Customizations
  • Blog Roll
    Apps / E-Business Suite
  • Steven Chan Apps
  • Anil Passi Technical
  • Fadi Apps DBA
  • Senthil Apps DBA
  • Bas Klaassen EBS DBA
  • Sam Apps DBA
  • Black Geek Apps DBA
  • Bandari Apps
  • Vikram ERP Architect
  • OraBiz
  • Eric Core DBA
  • SOA
  • Navdeep Saini Apps DBA
  • tugdualgrall Web Services
  • Mohan Dutt's Apps Certification
    IdM
  • Nishant Kaushik's IdM
  • Nulli Blog, OAM
  • Identity Musing
  • Identity nd Access Management
    Core DBA
  • Vidya Bala DBA
  • Sabdar DBA
    Data Management
  • Ivan Pellegrin Data Management


  • We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
    Configure SSL or HTTPS for Oracle Apps 11i
    Thursday, October 26, 2006
    Register for R12 upgrade
    Yesterday we looked at SSL overview in Oracle Applications 11i, you can look at that post from link

    http://becomeappsdba.blogspot.com/2006/10/overview-of-ssl-in-oracle-applications.html

    Lets continue with where we left yesterday

    What happens when we enable SSL in Oracle Web Server ?
    I am assuming that SSL is already enabled at web server , so you type url with protocol as https (where s stands for Secure ), web server understand that this is SSL request so Web Server sends its certificates back to client stating its identity & with that its send a Public key which your browser use to encrypt & decrypt message send by Web Server . Web Server uses its private key(known to itself only, stored in either wallet or ssl directory discussed later in this post) & public key(key which is known to everyone) to encrypt & decrypt messages. SSL has build in feature which assures that data is not tempered with its from valid source . If you don't understand all this at this minute don't worry you still can configure SSL. This entire concept is called as PKI (Publick Key Infrastructure)

    Myth about SSL Port in webserver ?
    Do I need to only Use on port 443 for Web Server SSL Port ?? not at all , port 443 is standard port for HTTPS as port 80 for HTTP. You can use HTTPS on any port as long as port is listening for HTTPS requests .

    Overview of Steps in configuring SSL over Web Server in Oracle Apps 11i ?
    I am mentioning over view of configuring SSL on web server in Oracle Applications (If you wish to configure SSL for Forms Server & Database Servers ) Steps mentioned here are for Autoconfig Enabled system & Apache 1.0.2.2.2 and higher (If you are not aware of your Apache/httpd version check here http://teachmeoracle.com/version.html)
    1. Create your SSL Certificates (I'll cover later how to generate SSL certificates for Web Server)
    2. Configure SSL parameters for web server variables via OAM or by changing Context File (xml file in APPL_TOP) These parameters I'll discuss shortly.
    3. Copy SSL Certificates created in step1 above, in SSL directories (Discussed Later) or Wallets (If you are using Oracle Wallets to store your certificates)
    4. Run Autoconfig to take new parameters to take into effect
    5. Test Applications with SSL

    Please note that above steps are for implementing SSL only on Web Server there are additional steps if you want to configure SSL on Form Server & Database Server . (I am not mentioning them here as this is not common)

    What is meant by creating SSL Certificates ?
    You remember above I discussed that server sends its certificates (public) to browser & uses private key to encrypt & decrypt messages . So steps in creating Certificates are
    1. Create Private key using openssl
    2. Create certificate request using private key created above
    3. Submit request file to Certifying Authority like verisign
    4. Get Certificates from certifying Authority (CA)
    If you are testing SSL you can use test certificates supplied with Web Server

    What are various parameters in XML file (CONTEXT File) w.r.t. SSL ?
    s_web_ssl_directory - Directory where SSL certificates are stored
    s_url_protocol - https means you are using ssl (Default is http)
    s_local_url_protocol - change it to https for SSL
    s_webssl_port - Apache SSL port
    s_active_webport - same as s_webssl_port
    s_webport - same as s_webssl_port

    Lot more coming in next post on configure SSL with Oracle Apps 11i....

    Labels: ,


    We have moved to

    http://onlineAppsDBA.com

    kindly check onLineAppsDBA.com in future

    add to del.icio.usdel.icio.us  ¦  digg thisDigg This  ¦  My Yahoo!My Yahoo  ¦  RedditReddit  ¦  add to BlinkListBlinkList   ¦  Furl ItFurl It  ¦  Email This Email This  ¦     Leave Your Comments
    posted by Atul Kumar @ 8:56 PM  
    6 Comments:
    • At 10:58 AM, Anonymous Anonymous said…

      Hi Atul,

      Thanks for discussing configuring SSL. While cloning SSL based Instance using Rapid Clone, are there any extra steps that needs to be taken care of?

      Thanks
      Nagarajan

       
    • At 11:02 AM, Blogger Atul Kumar said…

      Naga,
      Very valid points .

      No, You don't need to do anything except server certificates generate for new server & replace cloned instance with new one.

      I'll cover it in next post . Good & thanks for pointing this out .

      Atul
      http://teachmeoracle.com

       
    • At 9:37 AM, Blogger Unknown said…

      Dear Atul,

      Thanks for this post. I was also searching for this kind of document. Because I want to configure SSL only for HTTP server.
      But as per Oracle doc-id : 123718.1 it has mentioned that "You MUST configure SSL for both the Oracle HTTP Server and Oracle Forms (either the the Forms 6i Server or the Forms Listener
      Servlet), these cannot be configured independently."

      What is the difference between configuring the SSL only for HTTP server and both HTTP + Forms?

      Thanks in Advance.
      Shyaam

       
    • At 9:38 AM, Anonymous Anonymous said…

      Dear Atul,

      Thanks for this post. I was also searching for this kind of document. Because I want to configure SSL only for HTTP server.
      But as per Oracle doc-id : 123718.1 it has mentioned that "You MUST configure SSL for both the Oracle HTTP Server and Oracle Forms (either the the Forms 6i Server or the Forms Listener
      Servlet), these cannot be configured independently."

      What is the difference between configuring the SSL only for HTTP server and both HTTP + Forms?

      Thanks in Advance.
      Shyaam

       
    • At 11:09 AM, Anonymous ClickSSL said…

      I found great information from your blog,keep posting this kind of stuff ahead.thanks for share with us.

       
    • At 11:20 AM, Anonymous ev ssl said…

      I found great information from your blog,keep posting this kind of stuff ahead.thanks for share with us.

       
    Post a Comment
    << Home
     
    About Me


    Name: Atul Kumar
    Home: London, United Kingdom

    About Me: I am Independent Oracle consultant. If you wish to hire me on Contract or to Quote on project basis contact me at
    atul @ onlineappsdba.com

    See my complete profile

    View Atul Kumar's profile on LinkedIn

    E-mail Subscription

    Enter your email address:

    Delivered by FeedBurner

    Search
    Only search this Blog
    Categories
  • Advanced Topics
  • Application Server
  • Apex / HTMLDB
  • Apps 11i
  • Apps R12
  • Autoconfig
  • Basics
  • Certification
  • Cloning
  • Discoverer
  • Fusion
  • OID
  • Patching
  • Printer
  • Single Sign-On
  • Useful Sites & Forum
  • Previous Post
    Archives
    Add On
     

    Add to Technorati Favorites

     

     

    Add to Google

     

    Add to My AOL

     

    Subscribe in Bloglines

     

    Subscribe in NewsGator Online

     
    Powered by



    Hits Since 30, Jul 06

    Blog Counter

    Technology Blogs - Blog Top Sites
    Comments
    ADs
    Copyright © 2006 teachmeoracle.com All rights reserved Presented by Atul Kumar