Solving the ORA-29094 Certificate Validation Failure, i.e. managing a certificate wallet so that developers can work with external services is a horrible job. All DBAs hate doing it. All developers hate having to ask the DBA to do it. If ever there were a case where “DBA” stands for “Don’t Bother Asking”, this is it.
The problem is solved in 23c. All your developers need to do is tell their code to use the certificate store supplied with the operating system and maintained by their Sys Admin.
In this free tutorial, watch Oracle Certified Master DBA John Watson demonstrate how this works and how to configure this new feature. 7 minutes.
The Problem
More and more Apps need to make external calls, e.g. Restful Services, Authentication Service, Email or Print Servers. Prior to Oracle Database 23c, the solution involves:
1. Create a Network ACL to allow the call to reach its destination.
2. Manage the database wallet . “The database needs a wallet that contains the root certificate of the trusted certificates authority that issued the certificate which identifies the remote site.“
3. Populating and maintaining the wallet with all the Trusted Certificates required by your developers can be a time-consuming job.
The Solution
Oracle Database 23c can use the OS certificate store which is pre-populated with all the common trusted Certificate Authorities and gets updated with OS patching routines.
Intended Audience
Oracle DBA’s and Oracle Developers
Recommended Prerequisite Knowledge
Some familiarity with:
– Database HTTPS Calls, eg Restful Services, Authentication Service, Email or Print Servers
– Oracle Access Control Lists
– Wallets
Presenter: John Watson, SkillBuilders Certified Master Oracle DBA
Download the scripts and slides for this presentation:
https://skillbuilders.com/wp-content/uploads/2024/02/skillbuilders-oracle-23c-certificates.zip
Course Features
- Lecture 1
- Quiz 0
- Duration 9 minutes
- Skill level All levels
- Language English
- Students 0
- Assessments Yes