OUD11g - Replacing a Certificate in a Production Server Documentation States No Restart Needed When Replacing Certificate, when indeed it is necessary restart

(Doc ID 2313246.1)

Last updated on NOVEMBER 22, 2017

Applies to:

Oracle Unified Directory - Version 11.1.2.3.161018 and later
Information in this document applies to any platform.

Goal

After add a new certificate to the keystore of the primary OUD server to replace an expiring certificate.

Following the next documentation:

Which states that:

"There is no need to restart the server after the new certificate is installed. The new certificate is used immediately for subsequent attempts to access the server for associated client connections. Existing connections are not reestablished."


The Customer experience differed greatly from this expected behavior.  Their clients were unable to connect until the OUD process was restarted.

The realetd Service Request, was opened believing this to be a bug or that the documentation is misleading and/or inaccurate.
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms