Skip to content

Create new CSR and Import the Signed Certificate using the Oracle orapki tool⚓︎


Linux 7⚓︎

Bash
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
# create a new, empty, wallet with auto login enabled so a .sso file is created and an applicatino can use the wallet without a password
orapki wallet create -wallet wallet/ -auto_login

# create the private key for the certificate in the new wallet
orapki wallet add -wallet wallet/ -dn "C=<Coutry>, ST=<State>, L=<City>, O=<Org>, OU=<OU>, CN=<Common Name>" -keysize 2048 -pwd OurPassword

# display your current work, verify the CN is correct
orapki wallet display -wallet wallet/

# export the CSR for the newly created private key
orapki wallet export -wallet wallet/ -dn "C=<Coutry>, ST=<State>, L=<City>, O=<Org>, OU=<OU>, CN=<Common Name>" -request wallet/cert.csr -pwd OurPassword

# get your CSR submitted and the signed certificate saved as user_cert.pem

# add the Root CA certificate as a trusted cert in to the wallet
orapki wallet add -wallet wallet/ -trusted_cert -cert wallet/root.pem -pwd OurPassword

# add the Intermediate CA certificate as a trusted cert in to the wallet
orapki wallet add -wallet wallet/ -trusted_cert -cert wallet/intermediate.pem -pwd OurPassword

# add the signed public key certificate in to the wallet
orapki wallet add -wallet wallet/ -user_cert -cert wallet/user_cert.pem -pwd OurPassword

# display the wallet and confirm you see 3 "Subject" lines. The Root, Intermediate, and user certs should be listed.
orapki wallet display -wallet wallet/