I am trying to create a wallet using below certificates
- Root(provided by client)
- Intermediate(provided by client)
- User(provided by client-signed certificate)
- Private key(I have this key when I create the certificate request
Steps performed
I have merge the all three certificate and private key in one file using below command
a) cat root.cer Intermediate.cer usersinged.cer qwac.txt >> newchain.cer
b) create a new wallet
openssl pkcs12 -export -out "/u01/app/oratest/wallet/ewallet.p12" -inkey "/u01/app/oratest/wallet/qwac.txt" -in "/u01/app/oratest/wallet/usersinged.cer" -certfile "/u01/app/oratest/wallet/newchain.cer"
c) Convert wallet to JKS using keytool utility.
keytool -v -importkeystore -srckeystore "/u01/app/oratest/wallet/ewallet.p12" -srcstoretype PKCS12 -destkeystore "/u01/app/oratest/wallet/ewallet.JKS" -deststoretype JKS
d) Convert JKS to Oracle wallet using below steps
orapki wallet create -wallet /u01/app/oratest/wallet-auto_login -pwd Welcome1
e) Convert JKS to Oracle wallet
orapki wallet jks_to_pkcs12 -wallet /u01/app/oratest/wallet -pwd Welcome1-keystore /u01/app/oratest/wallet/ewallet.JKS -jkspwd 12345678
After performing all the above steps I have run below command
orapki wallet display -wallet /u01/app/oratest/wallet
Result
User Certificates:
Subject: 2.5.4.97=JTC-OB-Unknown0015800001HQQrZAAX,CN=0015800001HQQrZAAX,O=ABC
Trusted Certificates:
Subject: EMAIL=noreply@client.com,CN=client.intermediate,OU=IT,O=Client.,ST=Manama,C=BH
Subject: EMAIL=noreply@client.com,CN=Clinet.,OU=IT,O=Client.,L=Mamama,ST=Manama,C=BH
f) create acl entry
But when I run the below command then it is giving error message
select utl_http.request ('https://link.',NULL,'file:/u01/app/oratest/wallet','Welcome1') from dual;
[Error] Execution (1: 8): ORA-29273: HTTP request failed
ORA-06512: at "SYS.UTL_HTTP", line 1530
ORA-29024: Certificate validation failure
ORA-06512: at "SYS.UTL_HTTP", line 380
ORA-06512: at "SYS.UTL_HTTP", line 1470
ORA-06512: at line 1
Regards