Wallet Creation Sucess Step

-
Wallet Creation Sucess Step

https://www.youtube.com/watch?v=mIkBXhaeO70

https://oracle-base.com/articles/linux/create-self-signed-ssl-certificates

https://oracle-base.com/articles/misc/configure-tcpip-with-ssl-and-tls-for-database-connections

https://docs.oracle.com/cd/E23943_01/core.1111/e10105/walletmgr.htm#ASADM10184


Securing Credentials Using Wallet

https://www.youtube.com/watch?v=dF5Zas1i-W8

1) Give ACL rights

Conn sys/Manager1@cispdb

BEGIN
    DBMS_NETWORK_ACL_ADMIN.APPEND_HOST_ACE(
        host => '*',
        ace => xs$ace_type(privilege_list => xs$name_list('connect'),
                           principal_name => 'BLZLIVE',
                           principal_type => xs_acl.ptype_db));
END;

2) Create Wallet folder in desired folder T:\CIS\WALLET

3)  A properly configured sqlnet.ora file on the Oracle server and client looks similar to the following:

 
SQLNET.AUTHENTICATION_SERVICES= (BEQ, TCPS)

SSL_VERSION = 0

SSL_CLIENT_AUTHENTICATION = TRUE

wallet_location = (source=(method=file)(method_data=(directory=t:\cis\wallet)))

NAMES.DIRECTORY_PATH= (TNSNAMES, ONAMES, HOSTNAME)

4) Create Wallet to store the Certificate

   c:\> orapki wallet create -wallet t:\cis\wallet -pwd oracle123 -auto_login


5) download the certificate *.crt file from open the url in Mozila firefox   and store in c:\temp folder
 
  i.e https://<URL>:8443/apex/rnd/hr/employees/ we saved RapidSSLRSACA2018.crt in c:\temp

6) Add Trusted certificate to your wallet.

   c:\>orapki wallet add a-wallet t:\cis\wallet -cert c:\temp\RapidSSLRSACA2018.crt -trusted_cert -pwd oracle123

7) download the certificate *.crt file from open the https://www.oracle.com in Mozila firefox   and store in c:\temp folder
 
we saved DigiCertSecureSiteECCCA-1.crt in c:\temp

8) Add Trusted certificate to your wallet.

   c:\>orapki wallet add a-wallet t:\cis\wallet -cert c:\temp\DigiCertSecureSiteECCCA.crt -trusted_cert -pwd oracle123


9)You can check the contents of the wallet with the following command.

  orapki wallet display -wallet t:\cis\wallet   -pwd oracle123

  output

  Oracle PKI Tool Release 18.0.0.0.0 - Production
Version 18.1.0.0.0
Copyright (c) 2004, 2017, Oracle and/or its affiliates. All rights reserved.

Requested Certificates:
User Certificates:
Trusted Certificates:
Subject:        CN=DigiCert Secure Site ECC CA-1,OU=www.digicert.com,O=DigiCert
Inc,C=US
Subject:        CN=RapidSSL RSA CA 2018,OU=www.digicert.com,O=DigiCert Inc,C=US


10) Now perform attached script in oracle

    10.1) <attached select for RapidSSLRSACA2018.crt data>

select utl_http.request('https://<URL>:8443/apex/rnd/hr/employees/',null,'file:T:/cis/wallet') from dual;

   10.2) <attached for www.oracle.com  DigiCertSecureSiteECCCA>


declare
req UTL_HTTP.req;
resp UTL_HTTP.resp;
begin
UTL_HTTP.set_wallet('file:t:\cis\wallet', 'oracle123');
req:=UTL_HTTP.begin_request('https://www.oracle.com');
resp:=UTL_HTTP.get_response(req);
dbms_output.put_line(resp.status_code);
UTL_HTTP.end_response(resp);
end;


11) Login to  apex_admin --> got to instance


Sign in to Oracle Application Express Administration Services.

Click Manage Instance.

Under Instance Settings, click Instance Settings.

Click Wallet.

Under Wallet:

Wallet Path - Enter the path on the file system where the wallet is located using the following format:
file:directory-path
See field-level Help for examples.

file:T:/cis/wallet

Password - Enter the password needed to open the wallet. Select Check to confirm that you wish to change the wallet password to indicate that you have changed the password.
Click Apply Changes.


12) Configuring a Wallet in a Runtime Environment

12.1) Start SQL*Plus and connect to the database where Oracle Application Express is installed as SYS. For example

12.2)

SYSTEM_DRIVE:\ sqlplus /nolog
SQL> CONNECT SYS as SYSDBA
Enter password: SYS_password

12.3) ALTER SESSION SET CURRENT_SCHEMA = APEX_200100


12.4) APEX_INSTANCE_ADMIN.SET_PARAMETER(PARAMETER_NAME, PARAMETER_VALUE);

begin

apex_instance_admin.set_parameter( p_parameter => 'WALLET_PATH',
p_value => 'file:T:/cis/wallet');

apex_instance_admin.set_parameter( p_parameter => 'WALLET_PWD',
p_value => 'oracle123');

commit;
end;


13) ORA-20001: You have exceeded the maximum number of web service requests per workspace. Please contact your administrator.

BEGIN
    APEX_INSTANCE_ADMIN.SET_PARAMETER('MAX_WEBSERVICE_REQUESTS', '250000');
    COMMIT;
END;

Comments

Post a Comment

Popular posts from this blog

Telegram Integration with Oracle

-
 How to Integrate Telegram with Oracle Apex 1) create Telegram Account in your Mobile like whatsapp 2) Ones you register in telegram apps serach for BotFather 3) To Create New Bot u need to enter below command  /newbot  Alright, a new bot. How are we going to call it? Please choose a name for your bot. Macsbot Good. Now let's choose a username for your bot. It must end in `bot`. Like this, for example: TetrisBot or tetris_bot. MacsOmanBot Done! Congratulations on your new bot. You will find it at t.me/MacsOmanBot. You can now add a description, about section and profile picture for your bot, see /help for a list of commands. By the way, when you've finished creating your cool bot, ping our Bot Support if you want a better username for it. Just make sure the bot is fully operational before you do this. Use this token to access the HTTP API:<Here you will prompt with your api> 4) /mybots (this command will return the list of bots which you have created) ...
Read more

The username or password for the connection pool named |apex||, are invalid, expired, or the account is locked

-
  1. Execute the following command from SQL Plus as the SYS user:  Conn sys/Pass@xe as sysdba  (connect as container if 12c then  ALTER SESSION SET container = CDB$ROOT;) Alter user ords_public_user identified by xxxx; ALTER USER ORDS_PUBLIC_USER ACCOUNT UNLOCK; Connect as PDB Conn sys/Pass@xepdb1 as sysdba (if 12c  ALTER SESSION SET container = PDB1;) Alter user APEX_PUBLIC_USER identified by xxxx; Alter user APEX_REST_PUBLIC_USER identified by xxxx; Alter user APEX_LISTENER identified by xxxx; 2. Unlock the users: ALTER USER APEX_PUBLIC_USER ACCOUNT UNLOCK; ALTER USER APEX_REST_PUBLIC_USER ACCOUNT UNLOCK; ALTER USER APEX_LISTENER ACCOUNT UNLOCK; ALTER USER ORDS_PUBLIC_USER ACCOUNT UNLOCK; 3. Now create a profile for the APEX related users: Create profile apex_public_profile limit password_life_time unlimited; 4. Assign the profile to the APEX users: alter user apex_public_user profile apex_public_profile; alter user apex_rest_public_user profile apex_public_pr...
Read more

Enabled SQL Developer Web (SDW) & ORDS Database API ORDS 19.4

-
SQL Developer Web (SDW)  ORDS 19.2 to 19.4 Migration /  Basic Setup to Enable ORDS Database API Bsic Information  Installing Oracle REST Data Services https://docs.oracle.com/en/database/oracle/oracle-rest-data-services/19.4/aelig/installing-REST-data-services.html#GUID-673D35DD-9811-42F8-A500-4F494F79C470 https://docs.oracle.com/en/database/oracle/oracle-rest-data-services/19.4/aelig/installing-REST-data-services.html#GUID-2C42D982-BF08-48E3-A4C6-3FE1A78287E3 Using Oracle® SQL Developer Web https://docs.oracle.com/en/database/oracle/sql-developer-web/19.2.1/sdweb/about-sdw.html#GUID-AF7601F9-7713-4ECC-8EC9-FB0296002C69 How to Configure / Run ORDS for SQL Developer Web and APEX in Standalone Mode: ORDS 19.4 + (Doc ID 2628004.1) GOAL This document is an overview on how to configure and run ORDS standalone for SQL Developer Web using the command line interface. It also includes the steps related to setting up APEX, since the ability to run APEX as well as SQL Develo...
Read more