Content Server SSL Conversion Issue
(Doc ID 2643989.1)
Last updated on NOVEMBER 16, 2023
Applies to:
Oracle Learning Management - Version 12.1.3 and laterInformation in this document applies to any platform.
Symptoms
When attempting to start opmn services after enabling SSL on OLM Content Server,
the following error occurs.
ERROR
-----------------------
[ons-secure] Failed to open wallet (file:/a02/app/oracle/product/DevConServer/10.1.3.1/OracleAS_1/opmn/conf/ssl.wlt/default) [default password] (29106)
STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. We are enabling SSL for Content server application that is based on OPMN OC4J with no OHS.
Followed the note: How to Use SSL in OPMN-Managed OC4J Without Oracle HTTP Server (Doc ID 833208.1)
to make configuration changes to secure-web-site.xml,server.xml, opmn.xml ( attached to SR )
2. We are using the certificates from load balancer which consists of:
your_primary.crt ( signed server certificate )
CA.crt ( root certificate )
key.pem ( private key )
Using the above certificates created using keystore command:
keytool -import -alias fmsdev1 -file your_primary.crt -keystore cacerts -storepass changeit
keytool -import -alias fmsdev1root -file CA.crt -keystore cacerts -storepass changeit
keytool -v -list -keystore /dba/backup/certs/cacerts -storepass changeit
3. Starting opmn results in above error.
BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot enable SSL on Content Server.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |