2 Replies Latest reply on Apr 10, 2012 9:59 AM by Venkata Thiruveedhi-Oracle

    grid comtrol EM in security mode

    592815
      Hi friends,

      Based on security requirement, we need to configure grid control in security mode.

      We have oracle 11 grid control in Red hat Linux. How do we find the Grid control EM configuration is in security (enable ) or normal mode?
      The log URL is have https:\\xxxxxxxx

      Thanks in advance

      Oradb
        • 1. Re: grid comtrol EM in security mode
          Talip Hakan Ozturk
          Check this doc.

          http://docs.oracle.com/cd/B19306_01/em.102/b40002/security2.htm




          Talip Hakan Ozturk
          • 2. Re: grid comtrol EM in security mode
            Venkata Thiruveedhi-Oracle
            Hi,

            Enabling Security for the Oracle Management Service

            To enable Enterprise Manager Framework Security for the Management Service, you use the emctl secure oms utility, which is located in the following subdirectory of the Management Service home directory:

            $ORACLE_HOME/bin

            The emctl secure oms utility performs the following actions:

            Generates a Root Key within your Management Repository. The Root Key is used during distribution of Oracle Wallets containing unique digital certificates for your Management Agents.

            Modifies your Oracle HTTP Server to enable an HTTPS channel between your Management Service and Management Agents, independent from any existing HTTPS configuration that may be present in your Oracle HTTP Server.

            Enables your Management Service to accept requests from Management Agents using Enterprise Manager Framework Security.

            To run the emctl secure oms utility you must first choose an Agent Registration Password. The Agent Registration password is used to validate that future installation sessions of Oracle Management Agents and Oracle Management Services are authorized to load their data into this Enterprise Manager installation.

            To enable Enterprise Manager Framework Security for the Oracle Management Service:

            Change directory to the following directory in the Management Service home:

            ORACLE_HOME/opmn/bin

            Stop the Management Service, the Oracle HTTP Server, and the other application server components using the following command:

            $PROMPT> ./opmnctl stopall

            Change directory to the following directory in the Management Service home:

            ORACLE_HOME/bin

            Enter the following command:

            $PROMPT> ./emctl secure oms

            Enterprise Manager prompts you for the Enterprise Manager Root Password.

            Enter the password for the SYSMAN administrator account used for the Management Repository.

            Enterprise Manager prompts you to specify an Agent Registration Password, which is a new password that will be required for any Management Agents that attempt to connect to the Management Service.

            Specify an Agent Registration Password for the Management Service.

            Enterprise Manager prompts you to confirm the host name of the Management Service.

            When the operation is complete, restart the Management Service, the Oracle HTTP Server, and OracleAS Web Cache:

            $PROMPT> cd $ORACLE_HOME/opmn/bin
            $PROMPT> ./opmnctl startall

            After the Management Service restarts, test the secure connection to the Management Service by browsing to the following secure URL using the HTTPS protocol:

            https://hostname.domain:4888/

            For example:

            https://mgmthost1.acme.com:4888/

            If the Management Service security has been enabled, your browser displays the Oracle Application Server Welcome page.

            Best Regards,
            Venkat