■ Toolbar
■ Menus
Starting Oracle Wallet Manager
To start Oracle Wallet Manager:■ (UNIX) From $ORACLE_HOME/bin, enter the following at the command line: owm
■ (Windows) Select Start, Programs, Oracle HOME_NAME, Integrated Management Tools, Wallet Manager
Navigating the Oracle Wallet Manager User Interface
The Oracle Wallet Manager interface includes two panes, a toolbar, and various menu items as shown in Figure 2–2.
Figure 2–2 Oracle Wallet Manager User Interface
Navigator Pane The navigator pane provides a graphical navigation tree view of the certificate requests and certificates stored in the Oracle home where Oracle Wallet
See Also: Chapter 9, "Using Oracle Wallet Manager" for detailed information about using this application
Public Key Infrastructure Credentials Management Tools
Manager is installed. You can use the navigator pane to view, modify, add, or delete certificates and certificate requests.
The navigator pane functions the same way as it does in other Oracle graphical user interface tools, enabling you to
■ Expand and contract wallet objects so that you can manage the user and trusted certificates they contain.
■ Right-click a wallet, certificate, or certificate request to perform operations on it such as add, remove, import, or export.
When you expand a wallet, you see a nested list of user and trusted certificates. When you select a wallet or certificate in the navigator pane, details about your selection display in the adjacent right pane of Oracle Wallet Manager. Table 2–1 lists the main objects that display in the navigator pane.
Right Pane The right pane displays information about an object that is selected in the navigator pane. The right pane is read-only.
Figure 2–3 shows what is displayed in the right pane when a certificate request object is selected in the navigator pane. Information about the request and the requester's identity display in the Requested Identity, Key Size, and Key Type fields. The PKCS #10-encoded certificate request displays in the Certificate Request text box. To request a certificate from a certificate authority, you can copy this request into an e-mail or export it into a file.
Table 2–1 Oracle Wallet Manager Navigator Pane Objects Object Description
Wallet Password-protected container that is used to store authentication and signing credentials
Certificate Request1
1 These objects display only after you create a wallet, generate a certificate request, and import a
certificate into the wallet.
A PKCS #10-encoded message containing the requester's
distinguished name (DN), a public key, the key size, and key type.
Certificate1 An X.509 data structure containing the entity's DN, public key,
and is signed by a trusted identity (certificate authority).
Trusted Certificates1 Sometimes called a root key certificate, is a certificate from a
third party identity that is qualified with a level of trust.
Note: Figure 2–3 shows a certificate request for a user. A certificate can also be requested for a server in which case the CN attribute will contain the name of the server in place of the user name.
Public Key Infrastructure Credentials Management Tools
Configuration and Administration Tools Overview 2-7 Figure 2–3 Certificate Request Information Displayed in Oracle Wallet Manager Right Pane
Toolbar
The toolbar contains buttons that enable you to manage your wallets. Move the mouse cursor over a toolbar button to display a description of the button's function. The toolbar buttons are listed and described in Table 2–2.
Menus
You use Oracle Wallet Manager menus to manage your wallets and the credentials they contain. The following sections describe the options that are available under each menu.
Wallet Menu Table 2–3 describes the contents of the Wallet menu. Table 2–2 Oracle Wallet Manager Toolbar Buttons
Toolbar Button Description
New Creates a new wallet
Open Wallet Enables you to browse your file system to locate and open an existing wallet
Save Wallet Saves the currently open wallet
Delete Wallet Deletes the wallet that is currently selected in the navigator pane
Public Key Infrastructure Credentials Management Tools
Operations Menu Table 2–4 describes the contents of the Operations menu. Table 2–3 Oracle Wallet Manager Wallet Menu Options
Option Description
New Creates a new wallet
Open Opens an existing wallet
Close Closes the currently open wallet
Upload Into The Directory Service
Uploads a wallet to a specified LDAP directory server. You must supply a directory password, host name, and port information.
Download From The Directory Service
Downloads a wallet from a specified LDAP directory server. You must supply a directory password, host name, and port
information.
Save Saves the currently open wallet in the current working directory
Save As Enables you to browse your file system to choose a directory location in which to save the currently open wallet
Save In System Default
Saves the currently open wallet in the system default location:
■ (UNIX) /etc/ORACLE/WALLETS/username ■ (Windows) %USERPROFILE%\ORACLE\WALLETS Delete Deletes the wallet in the current working directory.
You must supply the wallet password.
Change Password Changes the password for the currently open wallet. You must supply the old password before you can create a new one.
Auto Login Sets the auto login feature for the currently open wallet.
Exit Exits the Oracle Wallet Manager application
Table 2–4 Oracle Wallet Manager Operations Menu Options Option Description
Add Certificate Request Generates a certificate request for the currently open wallet that you can use to request a certificate from a certificate authority (CA)
Import User Certificate Imports the user certificate issued to you from the CA. You must import the issuing CA's certificate as a trusted certificate before you can import the user certificate.
Import Trusted Certificate Imports the CA's trusted certificate
Remove Certificate Request
Deletes the certificate request in the currently open wallet. You must remove the associated user certificate before you can delete a certificate request.
Remove User Certificate Deletes the user certificate from the currently open wallet.
Remove Trusted Certificate
Removes the trusted certificate that is selected in the navigator pane from the currently open wallet. You must remove all user certificates that the trusted certificate signs before you can remove it.
Export User Certificate Exports the user certificate in the currently open wallet to save in a file system directory
Export Certificate Request Exports the certificate request in the currently open wallet to save in a file
Duties of a Security Administrator/DBA
Configuration and Administration Tools Overview 2-9 Help Menu Table 2–5 describes the contents of the Help menu.