I purchased a third party SSL certificate to install with ORDS 3.0.6.176.08.46 in standalone mode. (Jetty web server). After following Doc ID 2156766.1 , the intermediate and trusted root certificates are not properly getting put into the certificate chain. I confirmed this with https://www.sslshopper.com/ssl-checker.html. From what I understand, the 4 certificates (server,intermedates and root) received from my certificate provider should be concatenated together and used for the ssl.cert parameter of the standalone.properties file. Once I start ORDS, the keystore file named autokeystore.jks gets rebuilt automatically. However, only the server certificate gets properly put into the chain. Does anyone have experience with this in standalone mode?
Here are the exact steps I took...
1. Concatenated all the certificates with this command.
cat WWW.MYDOMAIN.COM.crt OV_NetworkSolutionsOVServerCA2.crt OV_USERTrustRSACertificationAuthority.crt AddTrustExternalCARoot.crt > cert-chain.crt
2. Made sure the cert-chain.crt file had a carriage return between each -----END CERTIFICATE----- and -----BEGIN CERTIFICATE-----.
3. Made sure the ssl.cert parameter pointed to cert-chain.crt and started ORDS.
Here are my references...
Here is a link to Oracle Doc ID 2156766.1 .
https://support.oracle.com/epmos/faces/DocumentDisplay?parent=SrDetailText&sourceId=3-13252051491&id=2156766.1
Jetty documentation.
https://wiki.eclipse.org/Jetty/Howto/Configure_SSL
Here is my environment.
Oracle REST Data Services 3.0.6.176.08.46 running in standalone mode.
Oracle Database 12c Standard Edition 12.1.0.2.0
Linux 64bit x86.
Does anyone have experience with this in standalone mode?