SSL

SSL


Start/stop apache as root( if default ports 80 and 443 are used, ROOT user
must execute commands )
more /d01/oracle/prodcomn/admin/scripts/VIS_hostname/Apache_SSL_Stop_root
# Please Stop Apache in SSL mode as root #
. /d01/oracle/prodappl/APPSORA.env
/d01/oracle/prodora/iAS/Apache/Apache/bin/httpdsctl stop
as applmgr
$ more $SCRIPT_TOP/STOP_ALL
adalnctl.sh stop
jtffmctl.sh stop
#addisctl.sh stop

as root
more /d01/oracle/prodcomn/admin/scripts/VIS_hostname/Apache_SSL_Start_root
# Please Start Apache in SSL mode as root #
. /d01/oracle/prodappl/APPSORA.env
/d01/oracle/prodora/iAS/Apache/Apache/bin/httpdsctl startssl

as applmgr:
$ more $SCRIPT_TOP/START_ALL
adalnctl.sh start
jtffmctl.sh start
#addisctl.sh start

https://hostname.domainname/OA_HTML/jtfavald.jsp

implement new SSL certificate
1) shutdown services on web
2) backup the current SSL certificate and implement the new one
cd /d01/oracle/prodcomn/admin/certs/apache/ssl.crt
mv server.crt server.crt.20090222
mv ca.crt ca.crt.20090222
mv ca.crt.new ca.crt
cp ca.crt server.crt
3) start the services on web
4) verify the following URL
https://hostname.domainname/OA_HTML/jtflogin.jsp

SSL renew
Login to server webnode1

cd /d01/oratrn/viscomn/conf/VIS_webnode1/iAS/Apache/Apache/conf/ssl.crt
mv server.crt.deploy server.crt
mv ca.crt.deploy ca.crt
mv ca-bundle.crt.deploy ca-bundle.crt

cd /d01/oratrn/viscomn/conf/VIS_webnode1/iAS/Apache/Apache/conf/ssl.key
mv server.key.deploy server.key

Bounce the Apache services for VIS
Test the login