6-10 Oracle Complex Event Processing Administrators Guide 17. In the Configure Server window, enter the name of the existing domain and the full pathname of its location. Following our example, you would enter myDomain for the domain name and C:\oracle_cep\user_projects\domains for the domain location.

18. Click Create.

19. If the creation of the new server succeeded, you will see a message similar to the following in the Creating Domain window: Domain created successfully Domain location: oracle_cepuser_projectsdomainsmyDomain

20. Click Done.

6.3 Securing the Messages Sent Between Servers in a Multi-Server Domain

The servers in a multi-server domain update their state by exchanging multi-server-related messages. It is important that these messages be at least checked for integrity. A private key can be used to achieve integrity. This key must be shared by all servers in the domain. This section describes: ■ Section 6.3.1, How to Secure the Messages Sent Between Servers in a Multi-Server Domain Using Oracle Coherence 6.3.1 How to Secure the Messages Sent Between Servers in a Multi-Server Domain Using Oracle Coherence You can secure the messages sent between servers in a multi-server domain using the Oracle Coherence clustering implementation. To secure the messages sent between servers in a multi-server domain using Oracle Coherence: 1. Stop all servers in your multi-server domain, if they are currently running. See Section 6.5, Starting and Stopping an Oracle CEP Server in a Multi-Server Domain . 2. Edit the config.xml file of each server in the multi-server domain by adding the security child element to the cluster element, as Example 6–6 shows. Example 6–6 The cluster Element security Child Element config domain namemyDomainname domain cluster server-namemyServer1server-name multicast-address239.255.0.1multicast-address identity1identity enabledcoherenceenabled securityencryptsecurity cluster ... config Administrating Multi-Server Domains With Oracle Coherence 6-11 The config.xml file is located in the DOMAIN_DIRservernameconfig directory of each server, where DOMAIN_DIR refers to the domain directory and servername refers to the name of your server, such as d:\oracle_cep_ home\user_projects\domains\mydomain\myserver1\config. You must specify one of the following values for the security child element: ■ none—Default value. Specifies that no security is configured for the multi-server domain. ■ encrypt—Specifies that multi-server messages should be encrypted. Observe the correct order of child elements in the cluster element. See Section 5.5, Order of cluster Element Child Elements . 3. Edit the DOMAIN_DIRservernameconfigsecurity-config.xml file of each server in the multi-server domain by adding the encryption-service child element of the config root element, as Example 6–7 shows. Example 6–7 The security-config.xml File encryption-service Element config encryption-service signature-enabledtruesignature-enabled encryption-service css-realm ... config 4. Ensure that the DOMAIN_DIRservername.msainternal.dat file for each server in the multi-server domain is exactly the same by copying the file from one server to the other servers. This file is automatically created by the Configuration Wizard when you first created the server; Oracle CEP uses this file for encrypting messages. For example, assume all the servers in your domain are located in the d:\oracle_cep\user_projects\domains\mydomain directory, and that the domain has three servers: server1, server2, and server3. To ensure they all have the same .msainternal.dat file, copy the one from server1 to the other servers: prompt cd d:\oracle_cep\user_projects\domains\mydomain\server1 prompt cp .msainternal.dat ..\server2 prompt cp .msainternal.dat ..\server3 5. Start one of the servers in your domain. See Section 6.5, Starting and Stopping an Oracle CEP Server in a Multi-Server Domain . Because of the encryption-service element that you added to the security-config.xml file in step 3, Oracle CEP automatically creates the .msasig.dat file in the main server directory. Oracle CEP uses this file for digitally signing messages. 6. Stop the server you just started. See Section 6.5, Starting and Stopping an Oracle CEP Server in a Multi-Server Domain . 7. Copy the .msasig.dat file you created in step 5 to the other servers.