OPSS - Is Possible To Delete Keystore Certificate/CAStore? (Doc ID 2299570.1)

Last updated on SEPTEMBER 08, 2017

Applies to:

Oracle Platform Security for Java - Version 12.1.2.0.0 and later
Information in this document applies to any platform.

Goal

Below warning message is reported in the Managed Server startup logs.

* Demonstration CA was found in use in this environment. *
* This deployment may be vulnerable to security attacks. *
* Replace the Demonstration CA with a custom CA immediately. *

Customer tried to delete the demo certificate by logging into EM console by following the below steps

1. Login to EM Console
2. Goto Weblogic Domain(Folder)-->BASE_DOMAIN(Right Click)-->Security-->Keystore-->System(Expand)-->castore(Select and click Manage)-->Cert_Alias(Select and Delete) .

A pop-up is displayed with the below message:

"Failed to delete certificate with alias XXXX of keystore system/castore.
Error message: JPS-06615: Operation not supported - unable to delete alias XXXX in key store castore in stripe system."

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms