R12 E-Business Suite Transport Layer Security (TLS) Configuration Fail With Warning When Creating 2048 RSA Private Key And CSR Signed Certificate Using Sha256WithRSAEncryption Per Note 376700.1
Last updated on JUNE 21, 2017
Applies to:Oracle E-Business Suite Technology Stack - Version 12.1.3 and later
Information in this document applies to any platform.
E-Business Suite R12 Applications Technology Stack, Secure Socket Layer Configuration issues
Configuring TLS1.2 for E-Business Suite 12.1.3 on the 10.1.3.5 oracle_home using the Document: <Note 376700.1> - Enabling TLS in Oracle E-Business Suite Release 12.1
Following the note, after the upgrade from JDK 1.6 to 1.7u131 a warning is received while creating 2048 RSA private key and a CSR signed using sha256WithRSAEncryption (Section 5, step 3 point 3):
ebstest > /u09/ebstest/apps/tech_st/10.1.3/Apache/open_ssl/bin/openssl req -newkey rsa:2048 -nodes -keyout server.key -sha256 -out new.csr -config new.cnf
WARNING: can't open config file: /home/test/ebs_remote/test/install/openssl.cnf
Generating a 2048 bit RSA private key
writing new private key to 'server.key'
All the patches mentioned in the note are applied, both as a part of JDK upgrade as well as the pre-requisites for TLS 1.2.
It has also been confirmed the PATH variable is pointing to openssl executable under 10.1.3.5 home.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms