OUD12.2.1.4.200204 and Prior Versions - How to List/Renew/Regenerate/Set the Self-Signed "ads-certificate" Used for Replication
(Doc ID 2994408.1)
Last updated on DECEMBER 24, 2023
Applies to:
Oracle Unified Directory - Version 11.1.2.3.0 to 12.2.1.4.210406 [Release 11g to 12c]Information in this document applies to any platform.
Goal
How to update the Oracle Unified Directory (OUD) self-signed ads-certificate for replication?
This document is specific to replication self-signed certificate for OUD 11g and 12c prior to OUD12.2.1.4.210406.
For Certificate Authority (CA) signed certificate, use the following document instead: OUD - How to List/Renew/Regenerate/Set the "ads-certificate" Used for Replication (Doc ID 1619734.1)
For Certificate Authority (CA) signed certificate, use the following document instead: OUD - How to List/Renew/Regenerate/Set the "ads-certificate" Used for Replication (Doc ID 1619734.1)
Starting with 12c version OUD12.2.1.4.210406 and higher, the process has changed to update certificates. Reference this KM:
OUD 12c - How to Obtain the PIN for the "ads" Certificate Database and Renew/Regenerate/Set the ads-certificate Used for Replication (Doc ID 2884315.1)
For 11g and 12c prior to OUD12.2.1.4.210406, use the below steps outlined in the Solution section.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Goal |
| Solution |
| Backup, check and prepare the keystore configuration |
| Verify the keystores with keytool and back up |
| Cleanup the keystore and recreate the self signed certificate with desired settings |
| Set the certificate for replication, restart, verify and test replication |
| References for key manager providers other than Replication |
| References |