My Oracle Support Banner

Oracle Access Manager 12c PS3 (OAM Unable To Renew Directory Server Certificates (Doc ID 2344543.1)

Last updated on OCTOBER 26, 2021

Applies to:

Oracle Access Manager - Version and later
Information in this document applies to any platform.
Oracle is not responsible for instructions/information from 3rd party sites that may be contained in this KM note.


In our Production Environment customer is trying to renew OID Certificate from Openssl of OAM oblix/tools/openssl

The below error is observed:

<OS_DRIVE>\Oracle\SSL><OS_DRIVE>\oracle\oam\identity\oblix\tools\openssl\openssl.exe ca -policy policy_anything -config openssl.cnf -cert certsnew/ca081217.cer -in <OS_DRIVE>\Oracle\SSL\request081217\oidcert.req -keyfile keys/ca.key -days 1001 -out certsnew/oid081217.cer
Using configuration from openssl.cnf
Loading 'screen' into random state - done
5056:error:0E06D06C:configuration file routines:NCONF_get_string:no value:.\crypto\conf\conf_lib.c:329:group=CA_default name=unique_subject
Enter pass phrase for keys/ca.key:
I am unable to access the <OS_DRIVE>Oracleoamidentityoblix oolsopensslsimpleCA directory
<OS_DRIVE>Oracleoamidentityoblix oolsopensslsimpleCA: Invalid argument


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.