R12 E-Business Suite Transport Layer Security (TLS) Configuration Fail With Warning When Creating 2048 RSA Private Key And CSR Signed Certificate Using Sha256WithRSAEncryption Per Note 376700.1 (Doc ID 2234556.1)

Last updated on JUNE 21, 2017

Applies to:

Oracle E-Business Suite Technology Stack - Version 12.1.3 and later
Information in this document applies to any platform.

Symptoms

E-Business Suite R12 Applications Technology Stack, Secure Socket Layer Configuration issues

Configuring TLS1.2 for E-Business Suite 12.1.3 on the 10.1.3.5 oracle_home using the Document: <Note 376700.1> - Enabling TLS in Oracle E-Business Suite Release 12.1

Following the note, after the upgrade from JDK 1.6 to 1.7u131 a warning is received while creating 2048 RSA private key and a CSR signed using sha256WithRSAEncryption (Section 5, step 3 point 3):

ebstest > /u09/ebstest/apps/tech_st/10.1.3/Apache/open_ssl/bin/openssl req -newkey rsa:2048 -nodes -keyout server.key -sha256 -out new.csr -config new.cnf
WARNING: can't open config file: /home/test/ebs_remote/test/install/openssl.cnf
Generating a 2048 bit RSA private key
..................+++
........................................+++
writing new private key to 'server.key'
-----
[EBSTEST-app]

All the patches mentioned in the note are applied, both as a part of JDK upgrade as well as the pre-requisites for TLS 1.2.

It has also been confirmed the PATH variable is pointing to openssl executable under 10.1.3.5 home.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms