This document provide CSR generation instructions for Oracle Wallet Manager. If you are not able to perform the steps on the server, Symantec recommends to contact the server vendor.
NOTE: To generate a CSR, you will need to create a key pair for your server. These two items are a digital certificate key pair and cannot be separated. If you lose your public/private key file or your password and generate a new one, your SSL Certificate will no longer match.
Step 1. Create a new wallet for Oracle Wallet Manager
NOTE: All certificates that will expire after October 2013 must have a 2048 bit key size.
- From the menu bar, select Wallet > New
- Enter the password twice > click OK
NOTE: The password must contain eight alphanumeric characters and special characters
- Select Add a certificate request. If not, select Cancel > select Wallet > Save in the system default to save the new wallet
Step 2. Create a Certificate Signing Request (CSR) for Oracle Wallet Manager
- Select Operations > Add Certificate Request
- A dialog box will appear to enter your certificate information
For explanation of required CSR fields, refer to solution SO7289
- Select OK
Step 3. Export a Certificate Signing Request (CSR) as a file
- In the left panel, select the Certificate Signing Request you want to export
- From the menu bar, select Operations > Export Certificate Request
- Enter a file name and directory you want to save your file to > select OK
- Verify your CSR
- Proceed with Enrolment
NOTE: Oracle also uses JKS format to create Private key and Certificate Signing Request. You can also specify the signature algorithm in JKS. For more information, please refer to SO21786
Once the certificate has been issued, follow the steps from this link to install the certificate on your server: SO4083