SSL Certificates are tiny data files that have digitally signed encryption keys to an organization. When installed on the server, it converts it from HTTP to a secure HTTPS platform.

SSL (Secure Socket Layer): This is an internet security protocol that is encryption-based formulated to use TCP (Transmission Control Protocol) in offering a dependable end-to-end connectivity. SSL is a set of guidelines to manage the authenticated and encrypted data communication between the Client (The entity browsing the Internet) and the Server (Website).

This blog will discuss secure connection/communication between Oracle Engagement Cloud and other third-party application via Oracle SOA.

SSL Certificate works in network layers. It rests between the Application Layer and the Transport layer and performs encryption-related activities:


SSL Certificate Renewal:

SSL renewal keeps encryption up to date, which makes everyone safer. SSL certificates have expiration dates hardcoded into them. When they expire, web browsers warn their users about the website. The reason SSL certificates expire is to keep connection encryption up to date with the latest encryption standards.

Renewing Oracle Sales Cloud SSL Certificate:

User’s/Admins get a notification about a certificate renewal if needed. Upon Oracle notification, if any external integration has old certificates, they should be replaced with new certificates as soon as Oracle installs the new one.

The network team confirms-the certificates they place on the load balancer should NOT be imported into the client certificate store. These are for the Oracle Load Balancers only. The client should be using the proper CA’s (Certificate-Authority) in their store.

Some user has inbound connection set up to communicate with the Oracle Cloud Fusion environment from external sources (e.g., On-Premises or Oracle PaaS/SaaS Services) and have embedded Akamai Certificates. A notification will be sent out to users for certificate renewal at the Akamai end. To avoid any interruption, plan to re-import certificates On or before the certificate renewal date.

Steps to log Service Request for Oracle Support to obtain certificates:

  • Log an SR via My Oracle Support

How can we test the new Certificate before renewal?

Following are instruction that support can provide the customer with, to test the Certificate before renewal:

  • If the customer plan to test via the Web browser:

How can our Network/Application administrators and/or integration partners import the Fusion SSL Certificates?

The basic key tool commands below can be used to import the Certificate being provided. The generic command to import certs:

/bin/keytool -import -trustcacerts -alias -keystore -keystore.jks -file

/bin/keytool -import -trustcacerts -alias -keystore -keystore.jks -file

/bin/keytool -import -alias -keystore -keystore.jks -file

Getting Certificate as per the Data Center (us2 for Lattice):

S.No Data centre DC CODE Certificate Zip Attachment 1 CA2 — Toronto ca2 2 CA3 — Calgary ca3 3 AP1 Sydney ap1 4 AP2 — Singapore ap2 5 AP4 — Melbourne ap4 6 AP5 — Tokyo ap5 7 EM2 — Amsterdam em2 8 EM3- Slough em3 9 EM4- Frankfurt em4 10 EM5 — Munich em5 11 US1- ADC us1 12 US2 — Chicago us2 13 US6- Ashburn us6 14 LA1-Saupaulo la1

Once the Certificate is downloaded, DBAs will import it into the server.

original blog source:



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store

Jade is the trusted IT Services Partner helping global clients accelerate business agility & achieve rapid digital transformation for long-term business growth.