In this Document
Oracle WebLogic Server - Version 12.2.1.0.0 and later
Oracle Fusion Middleware - Version 12.2.1.0.0 and later
Information in this document applies to any platform.
This document will be a work-in-progress to gather Oracle Documentation and My Oracle Support documents for SSL configuration that are specifically tested and written for FMW 12c Release 2 (12.2.x).
For individual FMW 12c products such as Oracle HTTP Server, see their respective Administration Guides at https://docs.oracle.com/middleware/12213/cross/admindocs.htm
Below are are to sections for Oracle HTTP Server:
While this document is work-in-progress, see Note 1628909.1, "Master Note for SSL Configuration in Fusion Middleware 12c Release 1 (12.1.x)" for some past popular topics. Some may be applicable to 12.2.x, but will not be added here until confirmed. There may be a need for minor changes or a new document for 12.2.x. Check Oracle Documentation for the same topics.
Some that include multiple 12c versions including 12.2.1:
Note 453079.1 Restricting Anonymous or Weak Ciphers in SSL (HTTPS) for Oracle Fusion Middleware 10g/11g/12c
Note 1936300.1 How to Change SSL Protocols (to Disable SSL 2.0/3.0) in Oracle Fusion Middleware Products
Note 1920143.1 Using OHS 11.1.1.9 or 12c as an SSL Reverse-Proxy to OHS 11.1.1.7
| Purpose |
| Scope |
| Details |
| Oracle Documentation |
| Planning |
| Instructional Topics |
| Known Issues |
| References |
Applies to:
Oracle HTTP Server - Version 12.2.1.0.0 and laterOracle WebLogic Server - Version 12.2.1.0.0 and later
Oracle Fusion Middleware - Version 12.2.1.0.0 and later
Information in this document applies to any platform.
Purpose
This is a Master Note for SSL configuration in Oracle Fusion Middleware (FMW) 12c Release 2 (12.2.x), continuing the series from previous releases:- Note 1628909.1 Master Note for SSL Configuration in Fusion Middleware 12c Release 1 (12.1.x)
- Note 1218695.1 Master Note for SSL Configuration in Fusion Middleware 11g
- Note 1281035.1 Master Note for SSL Configuration in Oracle Application Server 10g (10.1.2 - 10.1.3)
This document will be a work-in-progress to gather Oracle Documentation and My Oracle Support documents for SSL configuration that are specifically tested and written for FMW 12c Release 2 (12.2.x).
Scope
Details
Oracle Documentation
To begin learning about SSL configuration in FMW 12c Release 2 (12.2.x), see the following Oracle Documentation:
Administering Oracle Fusion Middleware - 6 Configuring SSL in Oracle Fusion Middleware
https://docs.oracle.com/middleware/12213/lcm/ASADM/configuring-ssl1.htm#ASADM1800
https://docs.oracle.com/middleware/12213/lcm/ASADM/configuring-ssl1.htm#ASADM1800
Administering Oracle Fusion Middleware - 7 Managing Keystores, Wallets, and Certificates
https://docs.oracle.com/middleware/12213/lcm/ASADM/managing-keystores-wallets-and-certificates.htm#ASADM2021
https://docs.oracle.com/middleware/12213/lcm/ASADM/managing-keystores-wallets-and-certificates.htm#ASADM2021
Administering Oracle Fusion Middleware - G orapki
https://docs.oracle.com/middleware/12213/lcm/ASADM/orapki.htm#ASADM10177
See also OPSS documentation when using FMW Infrastructure:https://docs.oracle.com/middleware/12213/lcm/ASADM/orapki.htm#ASADM10177
Middleware WLST Command Reference for Infrastructure Security
https://docs.oracle.com/middleware/12213/opss/IDMCR/toc.htm
https://docs.oracle.com/middleware/12213/opss/IDMCR/toc.htm
Fusion Middleware Securing Applications with Oracle Platform Security Services
https://docs.oracle.com/middleware/12213/opss/JISEC/toc.htm
https://docs.oracle.com/middleware/12213/opss/JISEC/toc.htm
For individual FMW 12c products such as Oracle HTTP Server, see their respective Administration Guides at https://docs.oracle.com/middleware/12213/cross/admindocs.htm
Below are are to sections for Oracle HTTP Server:
Administering Oracle HTTP Server - Implementing SSL
https://docs.oracle.com/middleware/12213/webtier/administer-ohs/security.htm#HSADM1325
Administering Oracle HTTP Server - Secure Sockets Layer Configuration
https://docs.oracle.com/middleware/12213/webtier/administer-ohs/workwith.htm#HSADM1300
https://docs.oracle.com/middleware/12213/webtier/administer-ohs/security.htm#HSADM1325
Administering Oracle HTTP Server - Secure Sockets Layer Configuration
https://docs.oracle.com/middleware/12213/webtier/administer-ohs/workwith.htm#HSADM1300
Planning
Note 2067900.1Oracle Fusion Middleware 12c Release 2 (12.2) Announcements
Note 2225494.1 Support Status for Wildcard, SNI and SAN SSL Certificates for Oracle HTTP Server and Web Cache 11g/12c
Note 2225494.1 Support Status for Wildcard, SNI and SAN SSL Certificates for Oracle HTTP Server and Web Cache 11g/12c
Instructional Topics
Note 2124504.1 How to Create a Wallet and Enable SSL for OHS via Fusion Middleware Control in FMW 12.2.1
Note 2368714.1 How to Create a Wallet and Keystore with a REAL Certificate Using keytool and orapki Utilities for Use With OHS Standalone 12c 12.2.1.x
Note 2121440.1 How to Create a Wallet and Keystore with a TEST Certificate Using keytool and orapki Utilities for Use With OHS Standalone 12c 12.2.1.x
Note 2269377.1 How to Configure SSL to Terminate at Oracle HTTP Server Release 2 (12.2.1) - with Oracle Forms Example
Note 2148815.1 How to Import Existing Wallet (pkcs12) or Java Keystore (jks) for Use with OHS 12.2.1+ SSL (Collocated)
Note 2269901.1 How to Configure mod_wl_ohs to use SSL between Oracle HTTP Server and Oracle WebLogic Server in Fusion Middleware 12c 12.2.1.x
Note 2352032.1 How to Configure SSL Only Configuration for WLS_REPORTS and WLS_FORMS in 12c 12.2.1.x
Note 1230333.1 How To Create a Java Keystore via Keytool in FMW 11g/12c
Note 2128468.1 How to Import a Third Party Wallet into FMW 12c 12.2.1.x
Note 2368714.1 How to Create a Wallet and Keystore with a REAL Certificate Using keytool and orapki Utilities for Use With OHS Standalone 12c 12.2.1.x
Note 2121440.1 How to Create a Wallet and Keystore with a TEST Certificate Using keytool and orapki Utilities for Use With OHS Standalone 12c 12.2.1.x
Note 2269377.1 How to Configure SSL to Terminate at Oracle HTTP Server Release 2 (12.2.1) - with Oracle Forms Example
Note 2148815.1 How to Import Existing Wallet (pkcs12) or Java Keystore (jks) for Use with OHS 12.2.1+ SSL (Collocated)
Note 2269901.1 How to Configure mod_wl_ohs to use SSL between Oracle HTTP Server and Oracle WebLogic Server in Fusion Middleware 12c 12.2.1.x
Note 2352032.1 How to Configure SSL Only Configuration for WLS_REPORTS and WLS_FORMS in 12c 12.2.1.x
Note 1230333.1 How To Create a Java Keystore via Keytool in FMW 11g/12c
Note 2128468.1 How to Import a Third Party Wallet into FMW 12c 12.2.1.x
Known Issues
Note 2219820.1 OHS 12.2.1.x Client Authentication Fails with "OHS:2079 Client SSL handshake error"
Note:2124752.1 Error "JPS-06636: Application stripe OHS does not exist in keystore" While Clicking on Keystore from FMW Control
Note:Note:2124752.1 Error "JPS-06636: Application stripe OHS does not exist in keystore" While Clicking on Keystore from FMW Control
While this document is work-in-progress, see Note 1628909.1, "Master Note for SSL Configuration in Fusion Middleware 12c Release 1 (12.1.x)" for some past popular topics. Some may be applicable to 12.2.x, but will not be added here until confirmed. There may be a need for minor changes or a new document for 12.2.x. Check Oracle Documentation for the same topics.
Some that include multiple 12c versions including 12.2.1:
Note 453079.1 Restricting Anonymous or Weak Ciphers in SSL (HTTPS) for Oracle Fusion Middleware 10g/11g/12c
Note 1936300.1 How to Change SSL Protocols (to Disable SSL 2.0/3.0) in Oracle Fusion Middleware Products
Note 1920143.1 Using OHS 11.1.1.9 or 12c as an SSL Reverse-Proxy to OHS 11.1.1.7
No comments:
Post a Comment