My Oracle Support Banner

Content Server SSL Conversion Issue (Doc ID 2643989.1)

Last updated on SEPTEMBER 29, 2020

Applies to:

Oracle Learning Management - Version 12.1.3 and later
Information in this document applies to any platform.

Symptoms


When attempting to start opmn services after enabling SSL on OLM Content Server,
the following error occurs.

ERROR
-----------------------
[ons-secure] Failed to open wallet (file:/a02/app/oracle/product/DevConServer/10.1.3.1/OracleAS_1/opmn/conf/ssl.wlt/default) [default password] (29106)


STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. We are enabling SSL for Content server application that is based on OPMN OC4J with no OHS.
Followed the note: How to Use SSL in OPMN-Managed OC4J Without Oracle HTTP Server (Doc ID 833208.1)
to make configuration changes to secure-web-site.xml,server.xml, opmn.xml ( attached to SR )

2. We are using the certificates from load balancer which consists of:
your_primary.crt ( signed server certificate )
CA.crt ( root certificate )
key.pem ( private key )
Using the above certificates created using keystore command:

keytool -import -alias fmsdev1 -file your_primary.crt -keystore cacerts -storepass changeit
keytool -import -alias fmsdev1root -file CA.crt -keystore cacerts -storepass changeit
keytool -v -list -keystore /dba/backup/certs/cacerts -storepass changeit

3. Starting opmn results in above error.

BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot enable SSL on Content Server.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.