© 2010 Oracle Corporation – Proprietary and Confidential
Infrastructure Security Best Practices Secure communication
Use a certificate from well-known Certificate Authority (CA) for the communication
Different expiry and key size that meet special security rules
Create a wallet for each OMS in the grid.
Write certificates of all the Certificate Authorities in the certificate chain into file trusted_certs.txt.
Download file trusted_certs.txt file to agents host machines
Restart Agent after running the add_trust_cert command.
emctl secure add_trust_cert -trust_certs_loc <location of trusted_certs.txt file>
Secure OMS and restart it.
emctl secure oms -wallet <location of wallet> -trust_certs_loc <loc of trusted_certs.txt>