How to Configure The SSL Certificate For Oracle Warehouse Builder Repository Browser
By Xin on Aug 27, 2013
The Repository Browser is a browser-based tool that generates reports from data stored in Oracle Warehouse Builder (OWB) repositories. It use OC4j as the web server. Users need to use HTTPS to access the web interface. ( HTTP on top of the SSL/TLS protocol)
If the Repository Browser Listener is running on a computer named owb_server, then typing the following address will start the Repository Browser:
On the server side, the SSL certificate for the browser is required. Users can create it by themselves.
First, uses can user the JRE's util "keytool" to generate a keystore, name it keystore.jks.
For example: keytool -genkey -keyalg RSA -alias mykey -keystore keystore.jks -validity 2000 -storepass welcome1
Please pay attention to the password of the store, it need to be the same as the credentials of keystoreadmin in the file called "system-jazn-data.xml".
If the password is not the same, the error message like "Keystore was tampered with, or password was incorrect" will be generated.
In order to change the credentials, there are two files you can edit.
- http-web-site.xml: It is in the path of %OWB_HOME%/j2ee/config. The password is stored as clear text in the http-web-site.xml, Users can change it to fit the password they use to generate the keysotre. For the security reason, if users don't want to store clear text, they can use the point (->keystoreadmin) to point another file named system-jazn-data.xml.
- system-jazn-data.xml: User can find "system-jazn-data.xml" in the %OWB_HOME%/j2ee/config. There is a entry in it called "keystoreadmin". Password store in this file is encrypted password. The pointer mentioned above is pointing to this place. In order to change the password, you can edit "system-jazn-data.xml", change the value "<credentials>" of the entry "keystoreadmin". Please added "!" in front of your password. For example, if you want to change the password to welcome,change it to <credentials>!welcome</credentials>