X hits on this document

225 views

0 shares

0 downloads

0 comments

72 / 78

72

© 2010 Oracle Corporation – Proprietary and Confidential

Infrastructure Security Best Practices Secure communication

Use a certificate from well-known Certificate Authority (CA) for the communication

Trusted certificates

Different expiry and key size that meet special security rules

Steps:

Create a wallet for each OMS in the grid.

Write certificates of all the Certificate Authorities in the certificate chain into file trusted_certs.txt.

Download file trusted_certs.txt file to agents host machines

Restart Agent after running the add_trust_cert command.

emctl secure add_trust_cert -trust_certs_loc <location of trusted_certs.txt file>

Secure OMS and restart it.

emctl secure oms -wallet <location of wallet> -trust_certs_loc <loc of trusted_certs.txt>

Oracle Management

Service

Oracle Management

Repository

Management

Agent

Grid Control Console

Database

Application

Host

Document info
Document views225
Page views226
Page last viewedWed Dec 07 12:47:00 UTC 2016
Pages78
Paragraphs1668
Words6426

Comments