My Oracle Support Banner

ORAPKI Tool Not Generating Certificate Request With Sha256 (Doc ID 2216288.1)

Last updated on AUGUST 17, 2022

Applies to:

Oracle Security Service - Version 11.2 and later
Information in this document applies to any platform.
orapki version is
orapki command is executed on OEM application server of version


orapki utility is not exporting the certificate request with sha256 signing algorithm.

The following command was executed to add certificate request to the oracle wallet :
EM_HOME/bin/orapki wallet add -wallet wallet_location -dn "default_md=sha256 default_bits=2048, OU=xxxxxxx, O=xxxx, L=xxxx, ST=xxxx, C=US" -sign_alg sha256 -keysize 2048 -pwd xxxx

The below orapki command to export the certificate request is not failing. But orapki command is NOT exporting the request in sha256 format. It is exporting in default md5.
EM_HOME/bin/orapki wallet export -wallet wallet_location -dn ", OU=xxxxxxx, O=xxxx, L=xxxx, ST=xxxx, C=US" -request location/certreq.csr




To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.