This discussion is archived
2 Replies Latest reply: Apr 10, 2012 2:59 AM by venkata thiruveedhi RSS

grid comtrol EM in security mode

592815 Newbie
Currently Being Moderated
Hi friends,

Based on security requirement, we need to configure grid control in security mode.

We have oracle 11 grid control in Red hat Linux. How do we find the Grid control EM configuration is in security (enable ) or normal mode?
The log URL is have https:\\xxxxxxxx

Thanks in advance

Oradb
  • 1. Re: grid comtrol EM in security mode
    Talip Hakan Ozturk Oracle ACE
    Currently Being Moderated
    Check this doc.

    http://docs.oracle.com/cd/B19306_01/em.102/b40002/security2.htm




    Talip Hakan Ozturk
  • 2. Re: grid comtrol EM in security mode
    venkata thiruveedhi Guru
    Currently Being Moderated
    Hi,

    Enabling Security for the Oracle Management Service

    To enable Enterprise Manager Framework Security for the Management Service, you use the emctl secure oms utility, which is located in the following subdirectory of the Management Service home directory:

    $ORACLE_HOME/bin

    The emctl secure oms utility performs the following actions:

    Generates a Root Key within your Management Repository. The Root Key is used during distribution of Oracle Wallets containing unique digital certificates for your Management Agents.

    Modifies your Oracle HTTP Server to enable an HTTPS channel between your Management Service and Management Agents, independent from any existing HTTPS configuration that may be present in your Oracle HTTP Server.

    Enables your Management Service to accept requests from Management Agents using Enterprise Manager Framework Security.

    To run the emctl secure oms utility you must first choose an Agent Registration Password. The Agent Registration password is used to validate that future installation sessions of Oracle Management Agents and Oracle Management Services are authorized to load their data into this Enterprise Manager installation.

    To enable Enterprise Manager Framework Security for the Oracle Management Service:

    Change directory to the following directory in the Management Service home:

    ORACLE_HOME/opmn/bin

    Stop the Management Service, the Oracle HTTP Server, and the other application server components using the following command:

    $PROMPT> ./opmnctl stopall

    Change directory to the following directory in the Management Service home:

    ORACLE_HOME/bin

    Enter the following command:

    $PROMPT> ./emctl secure oms

    Enterprise Manager prompts you for the Enterprise Manager Root Password.

    Enter the password for the SYSMAN administrator account used for the Management Repository.

    Enterprise Manager prompts you to specify an Agent Registration Password, which is a new password that will be required for any Management Agents that attempt to connect to the Management Service.

    Specify an Agent Registration Password for the Management Service.

    Enterprise Manager prompts you to confirm the host name of the Management Service.

    When the operation is complete, restart the Management Service, the Oracle HTTP Server, and OracleAS Web Cache:

    $PROMPT> cd $ORACLE_HOME/opmn/bin
    $PROMPT> ./opmnctl startall

    After the Management Service restarts, test the secure connection to the Management Service by browsing to the following secure URL using the HTTPS protocol:

    https://hostname.domain:4888/

    For example:

    https://mgmthost1.acme.com:4888/

    If the Management Service security has been enabled, your browser displays the Oracle Application Server Welcome page.

    Best Regards,
    Venkat

Legend

  • Correct Answers - 10 points
  • Helpful Answers - 5 points