User Store PStore Tool - GUI Version
9. SSL Tool
The sslTool helps with setup of SSL on the client side of Oracle Service Registry. The general usage is: sslTool [command [options]] The SSL tool has the following commands: • serverInfo - Prints out security requirements of an SSL server and saves a server certificate to a file. • encrypt - Prints out the encrypted form of a password supplied as plain text. Encrypted passwords are used in the configuration files of Oracle Service Registry. • pstoreEI - Exports and imports a java keystore to or from the Oracle Service Registry Protected Store. Both PKCS12 and JKS keystores are supported. The type of a supplied keystore is automatically detected during import. Running the sslTool with a command followed by a --help option prints out a complete help for the command. See Section 9.1, SSL Tool Examples for the most typical usage.9.1. SSL Tool Examples
To print out security requirements of an SSL server: sslTool serverInfo --url https:localhost:8443 To print out security requirements of an SSL server and save server certificates: sslTool serverInfo --url https:localhost:8443 --certFile tmpsever.cer To print out an encrypted password for use in Oracle Service Registry configuration files: sslTool encrypt --password changeit To import a key entry from a java keystore to Oracle Service Registry client Protected Store: sslTool pstoreEI -i --keystore tmpjava.keystore --storepass changeit --alias mykey --keypass changeit --pstore ..confclientconf.xml Page 3839.1. SSL Tool Examples
--pstoreAlias registryclient --pstoreKeypass changeit2 To export a key entry from Oracle Service Registry Protected Store to a java keystore: sslTool pstoreEI -e --keystore tmpjava.keystore2 --storepass changeit --alias mykey --keypass changeit --pstore ..confclientconf.xml --pstoreAlias registryclient --pstoreKeypass changeit29.2. Associating an SSL client identity with a registry client
Instructions on how to associate an SSL client identity with a registry client are explained in Section 2.5.1, Example Client . In this case, a key entry must be imported to registrys client protected store, which is the confclientconf.xml file of the registry installation directory and a few system properties must be added to a script that runs the client application. There are also cases where a registry acts as a client to another registry. These include: • Communication between nodes in a clustered Oracle Service Registry. Associating an SSL client identity with an Oracle Service Registry server can be done in the appuddiconfsecurity.xml file of a registry installation directory or deployed package for a deployed registry by adding the destinationConfig elements. A fragment of the security.xml with example destinationConfig elements is shown in Example 1, Association of client identities with a registry server . Example 1. Association of client identities with a registry server ?xml version=1.0 encoding=UTF-8? config name=security savingPeriod=5000 ... security ... security -- For communication with other nodes in the cluster -- destinationConfig aliasclusterClientalias password_codedgNFDFWMNdkU=password_coded destination proxyName=com.systinet.uddi.configurator.cluster.ConfiguratorManagerStub destination proxyName=com.systinet.uddi.configurator.cluster.ConfiguratorListenerStub destinationConfig -- For communication via registry client to services accessible at URLs that start with https:pc1.example.com or https:pc2.example.com -- destinationConfig aliasotherClientalias password_codedVr+i+UzC2WLJXWg0ih6J+Q==password_coded destination url=https:pc1.example.com destination url=https:pc2.example.com destinationConfig config Page 3849.2. Associating an SSL client identity with a registry client
Parts
» OSR11gR1ProductDocumentation
» Oracle Service Registry Features Overview
» UDDI Version 3 Specification Known Issues
» UDDI Version 2 Specification Database
» Supported Platforms OSR11gR1ProductDocumentation
» Specifications OSR11gR1ProductDocumentation
» Document Conventions OSR11gR1ProductDocumentation
» The Apache XML Security License, Version 1.1
» The Apache XML License, Version 1.1
» Apache Jakarta License, Version 1.1
» CUP Parser Generator Third Party Licenses
» Jetty License, Version 3.6 Third Party Licenses
» W3C Software Notice and License
» Xalan, Version 2.5.1 Third Party Licenses
» XML Pull Parser for Java, 1.1.1
» Support OSR11gR1ProductDocumentation
» Java™ Platform System Requirements
» Relational Database System Requirements
» Installation Type SMTP Configuration
» Setup Administrator Account Database Settings
» Application Server Settings Installation Panels
» Confirmation and Installation Process
» Clustering Oracle Service Registry with Oracle WebLogic Server
» Directory Structure Installation Summary
» Registry Endpoints Installation Summary
» Setup Signer Command-line Scripts
» Registry Installation Options Command-line Options Reconfiguring After Installation
» Using the syslog Daemon with Oracle Service Registry
» Running Oracle Service Registry as a UNIX Daemon
» Database Creation Method Database Installation
» Oracle Data Source Creation JDBC Driver
» Account Backend Database Installation
» Oracle MSSQL DB2 Multilingual Data
» Alternative JDBC Drivers JDBC Drivers
» Discovery Registry Installation Publication Registry Installation
» Intermediate Registry Installation Approval Process Registry Installation
» LDAP with a Single Search Base
» LDAP with Multiple Search Bases
» LDAP Configuration Examples Oracle Internet Directory with Single Search Base
» Custom Non-LDAP External Accounts Integration
» Cluster operation Cluster Configuration
» Cluster installation Cluster Configuration
» Sharing Token Key Setting Up Security
» WebLogic specific configuration for use with cluster
» HTTP Basic Authentication Configuration
» Netegrity SiteMinder Authentication Configuration
» SSL Client authentication with Embedded HTTPHTTPS Server
» SSL Client Authentication in Oracle WebLogic
» Internal SSL Client Authentication Mapping in J2EE
» Disabling Normal Authentication Authentication Configuration
» Consoles Configuration Authentication Configuration
» Outgoing Connections Protected with SSL Client Authentication
» Uninstallation OSR11gR1ProductDocumentation
» UDDIs Role in the Web Services World - UDDI Benefits
» Typical Application of a UDDI Registry
» UDDI Data Model Basic Concepts of the UDDI Specification
» Taxonomic Classifications Basic Concepts of the UDDI Specification
» Security Considerations Notification and Subscription
» Replication Basic Concepts of the UDDI Specification
» UDDI APIs Basic Concepts of the UDDI Specification
» Technical Notes Basic Concepts of the UDDI Specification
» Subscription Arguments Subscriptions in Oracle Service Registry
» Suppressing Empty Notifications Subscriptions in Oracle Service Registry
» Requestors Actions Approval Process in Oracle Service Registry
» Approvers Actions Approval Process in Oracle Service Registry
» Synchronization of Data Approval Process in Oracle Service Registry
» Mail notification in approval process
» Related Links Approval Process in Oracle Service Registry
» Registry Consoles OSR11gR1ProductDocumentation
» Demo Data for Business Service Control
» Demo data for Registry Control and demos
» Overview Business Service Control
» User Profile Fields The My Profile tab has the following fields:
» Searching Providers Searching Endpoints
» Reports Business Service Control
» Subscription On Selected Entities Subscription from Search Query
» Requestors Actions Approval Process
» Approvers Actions Approval Process
» Explicit Permissions Data Access Control: Principles
» Permission Rules Data Access Control: Principles
» Composite Operations Data Access Control: Principles
» Pre-installed Groups Data Access Control: Principles
» ACL tModels Data Access Control: Principles
» Setting ACLs on UDDI v3 Structures
» Setting ACLs on UDDI v1v2 Structures
» Generating Keys Publisher-Assigned Keys
» Affiliations of Registries Publisher-Assigned Keys
» Taxonomy Types Taxonomy: Principles, Creation and Validation
» Validation of Values Taxonomy: Principles, Creation and Validation
» Types of keyValues Taxonomy: Principles, Creation and Validation
» Taxonomy API Taxonomy: Principles, Creation and Validation
» Predeployed Taxonomies Taxonomy: Principles, Creation and Validation
» RegisterCreate Account Register Registry Console Reference
» Main Menu Tabs Browse Menu Bar
» Tree Display Area Main Display Area
» Display Tabs Action Icons Action Icons Context Menu
» Browsing Registry Console Reference
» Publishing Registry Console Reference
» Starting the Signer Main Screen
» Signer Configuration Signer Tool
» Integrating with Oracle JDeveloper
» How To Configure the Inquiry URL, UDDI Service Key, and Endpoint Address for Runtime
» Integrating with Oracle Enterprise Repository
» Integrating wih Oracle Service Bus
» Enabling Dynamic Lookup of BPEL Partner Link Endpoints
» Enabling Dynamic Lookup of ESB SOAP Endpoints Integrating with Oracle Web Services Manager WSM
» Create Account Account Management
» Accessing Permission Management Permissions
» Editing and Deleting Permissions
» Adding Taxonomies Taxonomy Management
» Understanding Replication Replication Management
» Master Registry Setup Replication Management
» Slave Registry Setup Replication Management
» Create Requestor Approval Process Management
» Replacing tModel keys Replacing UDDI Keys
» Replace URLs Registry Statistics
» Current configurations and their history View configuration
» Named collections of configuration List of named collections
» Core Config Database Registry Configuration
» Security Account Registry Configuration
» Group Subscription Registry Configuration
» Paging Limits Figure 46. Business Service Control Configuration - Paging Limits UI Configuration
» Customizable Taxonomies Business Service Control Configuration
» Customizing Individual Pages Business Service Control Configuration
» Web Interface Configuration Figure 54. Registry Console Configuration - Web Interface Tab
» Paging Configuration Figure 55. Registry Console Configuration - Paging Tab
» Permissions Definitions Permissions: Principles
» Oracle Service Registry Permission Rules
» Setting Permissions Permissions: Principles
» Permissions and User Roles ApiManagerPermission Reference
» Requestor Approval Process Roles
» Approver Approval Process Roles
» autoApprover Approval Process Roles
» Administrator Approval Process Roles
» Optional Content Checking Setup
» Commands Description PStore Tool
» Open Next Protected Store Copy Data Between Protected Stores
» User Store PStore Tool - GUI Version
» Associating an SSL client identity with a registry client
» WSDL PortTypes WSDL Bindings
» UDDI Version 2 UDDI Version 3 UDDI Version 3 Extension
» Administration Utilities Advanced APIs
» Replication Statistics Advanced APIs
» WSDL Publishing Advanced APIs
» XML Publishing Advanced APIs
» XSD Publishing Advanced APIs
» XSLT Publishing Advanced APIs
» Client Package Registry Client
» JARs on the Client Classpath
» Example Client Client Authentication
» Accessing Backend APIs Server-Side Development
» Accessing Registry APIs Custom Registry Modules
» Custom Module Sample Custom Registry Modules
» Creating and Deploying Interceptors
» Logging Interceptor Sample Interceptors
» Request Counter Interceptor Sample
» Deploying Validation Service Writing a Custom Validation Service
» External Validation Service Writing a Custom Validation Service
» Sample Files Writing a Subscription Notification Service
» Architecture Description Registry Web Framework
» Directory Structure Registry Web Framework
» Framework Configuration Registry Web Framework
» Where can I find the code which generates the page header?
» How do I change the text displayed on a pages title bar?
» Where is the right place to include my own JavaScript files?
» Where is it possible to change the text displayed in the page footer?
» Business Service Control Localization
» Directory Structure Business Service Control Framework
» Business Service Control Configuration
» Entity Configuration Business Service Control Framework
» Permission support Business Service Control Framework
» Components and Tags Business Service Control Framework
» Connecting to Oracle Service Registry from JDeveloper
» Running SOAPSpy SOAPSpy Tool
» Prerequisites and Preparatory Steps: Code
» Presentation and Functional Presentation
Show more