2 Replies Latest reply: Mar 15, 2013 3:46 PM by Dan Haydon RSS

    RIDC and SSL

    Dan Haydon
      I'm trying to configure RIDC to use one way SSL but this is new to me and I am confused about where I need to import the certificates.

      I created a CSR and I have downloaded a trial certificate from verisign. It gave me a Root CA Certificate, Intermediate CA Certificate and a SSL Certificate. If I only want to do one way SSL do I only need to import them only on the server? And if so is it the truststore that I import them into and not the keystore?

      I appreciate your help.
        • 1. Re: RIDC and SSL
          Srinath Menon-Oracle
          Hi ,

          I believe this documentation would help you : http://docs.oracle.com/cd/E23943_01/doc.1111/e10792/c05_security.htm#CDDDDCAA

          As per this documentation on configuring clients:
          http://docs.oracle.com/cd/E23943_01/doc.1111/e10807/c23_ridc.htm#CIHDGIIC
          For SSL communication, you must install and enable the SecurityProviders component in the Content Server instance that you want to access. You must configure Content Server for SSL communication with a new incoming provider, and specify the truststore or keystore information. You must have a valid keystore or trust manager with signed, trusted certificates on both the client and Content Server.

          Basically you are configuring a socket port for SSL communication, so you do not have to configure the content server for SSL over HTTP. But there is still the extra SSL configuration required for this to happen.

          Hope this helps .

          Thanks,
          Srinath
          • 2. Re: RIDC and SSL
            Dan Haydon
            I got this working. I needed to import the certificates in the keystore on the server and the trustore on the client. Just a lack of understanding SSL on my part.