Forum Stats

  • 3,827,925 Users
  • 2,260,839 Discussions
  • 7,897,407 Comments

Discussions

Clarification regarding setting up TCPS communication for Oracle Multitenant database

user9357864
user9357864 Member Posts: 1 Red Ribbon
edited Jan 29, 2020 11:51AM in Multitenant

I'm attempting to enable SSL/TLS so users can communicate using TCPS to an Oracle 12.2. Database. The database itself is basic, just a CDB with four PDBs. The database's wallet will ultimately contain a trusted signed certificate, though I may use a self signed key for testing.

Looking at document 2099733.1 (https://support.oracle.com/epmos/faces/DocContentDisplay?id=2099733.1), it seems like all I need to do is create a single wallet for the container. Pretty straight forward. But if I look at the 12.2 Database Security Guide, specifically the section "Using Transport Layer Security in a Multitenant Environment," (https://docs.oracle.com/en/database/oracle/oracle-database/12.2/dbseg/configuring-secure-sockets-layer-authentication.html#GUID-EF8DEC69-C8BE-462B-ABDD-E621914E617E), it makes it sound like I need a wallet for each PDB in the form of something like /oracle/product/12.2.0/dbhome_1/wallet/$GUID where this path is listed in the sqlnet.ora file as "DIRECTORY = /oracle/product/12.2.0/dbhome_1/wallet" (Oracle will then presumably know to look at the $DIRECTORY/$GUID path for the wallet).

Which is it?

Thank you for your help.

Mark

Tagged:

Answers