My Oracle Support Banner

ODSEE - Renewal of Self Signed Certificate Does not Increase Validity (Doc ID 2647160.1)

Last updated on AUGUST 22, 2023

Applies to:

Oracle Directory Server Enterprise Edition - Version 11.1.1.7.1 and later
Information in this document applies to any platform.

Symptoms

Renewal of Self Signed Certificate Does not Increase Validity

Tested in the following way:

$DSEE_HOME/dsee7/bin# ./dsadm list-certs $DSEE_HOME/dsee7/$DS_INST
Alias Valid from Expires on Self-signed? Issued by Issued to
----------- ---------------- ---------------- ------------ ------------------------------------------------------ --------------
<SELF_SIGN_CERT> 2020/03/06 10:12 2022/03/06 10:12 y CN=<SELF_SIGN_CERT>,CN=<TEST> Same as issuer
defaultCert 2020/03/06 10:15 2022/03/06 10:15 y CN=<TEST>,CN=<CN>,CN=Directory Server,O=<ORG> Same as issuer
2 certificate(s) found

$DSEE_HOME/dsee7/bin# ./dsadm show-cert $DSEE_HOME/dsee7/$DS_INST <SELF_SIGN_CERT>
Certificate:
  SHA1 Fingerprint: <SHA1_HASH>
  Serial Number: 00:B4:06:22:AA
  Subject: CN=<SELF_SIGN_CERT>,CN=<TEST>
  Issuer: CN=<SELF_SIGN_CERT>,CN=<TEST>
  SigAlg: PKCS #1 SHA-1 With RSA Encryption
  Validity: 2020/03/06 - 2022/03/06
  SSL Usage: Self Signed Server Certificate

$DSEE_HOME/dsee7/bin# ./dsadm renew-selfsign-cert --validity 48 $DSEE_HOME/dsee7/$DS_INST <SELF_SIGN_CERT>
The instance must be stopped.

$DSEE_HOME/dsee7/bin# ./dsadm stop $DSEE_HOME/dsee7/$DS_INST
Directory Server instance '$DSEE_HOME/dsee7/$DS_INST' stopped

$DSEE_HOME/dsee7/bin# ./dsadm start $DSEE_HOME/dsee7/$DS_INST
Directory Server instance '$DSEE_HOME/dsee7/$DS_INST' started: pid=100

$DSEE_HOME/dsee7/bin# ./dsadm show-cert $DSEE_HOME/dsee7/$DS_INST <SELF_SIGN_CERT>
Certificate:
  SHA1 Fingerprint: <SHA1_HASH>
  Serial Number: 00:B4:06:22:AA
  Subject: CN=<SELF_SIGN_CERT>,CN=<TEST>
  Issuer: CN=<SELF_SIGN_CERT>,CN=<TEST>
  SigAlg: PKCS #1 SHA-1 With RSA Encryption
  Validity: 2020/03/06 - 2022/03/06
  SSL Usage: Self Signed Server Certificate
 

The expectation is that when setting the validity - it would actually be set.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.