Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> Any one using (tried???) Oracle Advanced Security option????

Any one using (tried???) Oracle Advanced Security option????

From: K Gopalakrishnan <kaygopal_at_yahoo.com>
Date: Mon, 4 Dec 2000 11:51:34 +0530
Message-Id: <10701.123670@fatcity.com> 





This is a multi-part message in MIME format.



------=_NextPart_000_0168_01C05DE8.8D26A5D0
Content-Type: text/plain;


        charset="iso-8859-1"


Content-Transfer-Encoding: quoted-printable



Hi !!



ANy one using Oracle Advanced Security server=20
with SSL. One of my friend seeked my support...
Here are  the steps.  (he followd,,)



Oracle8i(8.1.1.6) Enterprise Edition on WindowsNT4.0 Server with Oracle =
Advanced


Security Products installed


Oracle SQL Client on WindowsNT Workstation with Oracle Advanced Security
Products installed



Configuration Details:


1)Created a wallet using the oracle wallet manager.
2)Created a Certification request for the oracle server using =
oracleserver as


the common name.


3)Obtained a trial certificate from verisign.com=20
4)Imported into the wallet the CA Root certificate and the =
usercertificate for


the oracle server.


5)Using the Net8 Assistant configured SSL for the server and specified =
the


location for the wallet.


6) Specified SSL_RSA_EXPORT_WITH_RC4_40_MD5 to be used as the cipher =
suite


7)Set the SSL version as 3.0 and SSL_CLIENT_AUTHENTICATION being set to =
TRUE.



8)Configured the listener with a TCP/IP with SSL listening endpoint and =
the port


being 2484.


9) Using the Net8 Assistant configured SSL for the client and specified =
the same


location for the wallet as done when configured for=20
the server.


10)Specified SSL_RSA_EXPORT_WITH_RC4_40_MD5 to be used as the cipher =
suite


11)Set the SSL version as 3.0 .


12)The client is then configured with the location of the =
listener(TCP/IP with


SSL and port hno: 2484).


After having done so when trying to connect to the server launching SQL =
Plus and


entering


1) /@brahms (Here brahms is the name of the server where Oracle server =
is


installed)


2)test/test_at_brahms (test/test is userid/password for the oracle user).
In both the cases the following error is raised.
"Decryption of encyrpted private key failed".
Also tried out changing the SSL version for both client and server to =
any.Tried


out using the default cipher suite configuration that is without =
specifying


which cipher suite to be used.But the same error occurs.
Is there with problem with the configuration?



Any experts there???





------=_NextPart_000_0168_01C05DE8.8D26A5D0
Content-Type: text/html;


        charset="iso-8859-1"


Content-Transfer-Encoding: quoted-printable



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<HTML><HEAD>

<META content=3D"text/html; charset=3Diso-8859-1" =

http-equiv=3DContent-Type>


<META content=3D"MSHTML 5.00.2314.1000" name=3DGENERATOR>

<STYLE></STYLE>

</HEAD>

<BODY bgColor=3D#ffffff>

<DIV><FONT face=3DArial size=3D2>Hi !!</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=3DArial size=3D2>ANy one using Oracle Advanced Security =

server=20


</FONT></DIV>

<DIV><FONT face=3DArial size=3D2>with SSL.&nbsp;One of my friend seeked =

my=20


support...</FONT></DIV>


<DIV><FONT face=3DArial size=3D2>Here are&nbsp; the steps.&nbsp; (he=20

followd,,)</FONT></DIV>


<DIV>&nbsp;</DIV>

<DIV><FONT face=3DArial size=3D2>Oracle8i(8.1.1.6) Enterprise Edition on =




WindowsNT4.0 Server with Oracle Advanced<BR>Security Products=20
installed<BR>Oracle SQL Client on WindowsNT Workstation with Oracle =
Advanced=20


Security<BR>Products installed<BR><BR>Configuration =
Details:<BR>1)Created a=20


wallet using the oracle wallet manager.<BR>2)Created a Certification =
request for=20


the oracle server using oracleserver as<BR>the common =
name.<BR>3)Obtained a=20


trial certificate from verisign.com <BR>4)Imported into the wallet the =
CA Root=20


certificate and the usercertificate for<BR>the oracle server.<BR>5)Using =
the=20


Net8 Assistant configured SSL for the server and specified =
the<BR>location for=20


the wallet.<BR>6) Specified SSL_RSA_EXPORT_WITH_RC4_40_MD5 to be used as =
the=20


cipher suite<BR>7)Set the SSL version as 3.0 and =
SSL_CLIENT_AUTHENTICATION being=20


set to TRUE.<BR>8)Configured the listener with a TCP/IP with SSL =
listening=20


endpoint and the port<BR>being 2484.<BR>9) Using the Net8 Assistant =
configured=20


SSL for the client and specified the same<BR>location for the wallet as =
done=20


when configured for <BR>the server.<BR>10)Specified=20
SSL_RSA_EXPORT_WITH_RC4_40_MD5 to be used as the cipher suite<BR>11)Set =
the SSL=20


version as 3.0 .<BR>12)The client is then configured with the location =
of the=20


listener(TCP/IP with<BR>SSL and port hno: 2484).<BR>After having done so =
when=20


trying to connect to the server launching SQL Plus and<BR>entering<BR>1) =



/@brahms (Here brahms is the name of the server where Oracle server=20
is<BR>installed)<BR>2)test/test_at_brahms (test/test is userid/password for =
the=20


oracle user).<BR>In both the cases the following error is =
raised.<BR>"Decryption=20


of encyrpted private key failed".<BR>Also tried out changing the SSL =
version for=20


both client and server to any.Tried<BR>out using the default cipher =
suite=20


configuration that is without specifying<BR>which cipher suite to be =
used.But=20


the same error occurs.<BR>Is there with problem with the=20
configuration?<BR></FONT></DIV>


<DIV><FONT face=3DArial size=3D2>Any experts there???</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=3DArial size=3D2>&nbsp;</DIV></FONT></BODY></HTML>




------=_NextPart_000_0168_01C05DE8.8D26A5D0--
Received on Mon Dec 04 2000 - 00:21:34 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US