• No results found

Navigating the Oracle Wallet Manager User Interface

■ Toolbar

■ Menus

Starting Oracle Wallet Manager

To start Oracle Wallet Manager:

■ (UNIX) From $ORACLE_HOME/bin, enter the following at the command line: owm

■ (Windows) Select Start, Programs, Oracle HOME_NAME, Integrated Management Tools, Wallet Manager

Navigating the Oracle Wallet Manager User Interface

The Oracle Wallet Manager interface includes two panes, a toolbar, and various menu items as shown in Figure 2–2.

Figure 2–2 Oracle Wallet Manager User Interface

Navigator Pane The navigator pane provides a graphical navigation tree view of the certificate requests and certificates stored in the Oracle home where Oracle Wallet

See Also: Chapter 9, "Using Oracle Wallet Manager" for detailed information about using this application

Public Key Infrastructure Credentials Management Tools

Manager is installed. You can use the navigator pane to view, modify, add, or delete certificates and certificate requests.

The navigator pane functions the same way as it does in other Oracle graphical user interface tools, enabling you to

■ Expand and contract wallet objects so that you can manage the user and trusted certificates they contain.

■ Right-click a wallet, certificate, or certificate request to perform operations on it such as add, remove, import, or export.

When you expand a wallet, you see a nested list of user and trusted certificates. When you select a wallet or certificate in the navigator pane, details about your selection display in the adjacent right pane of Oracle Wallet Manager. Table 2–1 lists the main objects that display in the navigator pane.

Right Pane The right pane displays information about an object that is selected in the navigator pane. The right pane is read-only.

Figure 2–3 shows what is displayed in the right pane when a certificate request object is selected in the navigator pane. Information about the request and the requester's identity display in the Requested Identity, Key Size, and Key Type fields. The PKCS #10-encoded certificate request displays in the Certificate Request text box. To request a certificate from a certificate authority, you can copy this request into an e-mail or export it into a file.

Table 2–1 Oracle Wallet Manager Navigator Pane Objects Object Description

Wallet Password-protected container that is used to store authentication and signing credentials

Certificate Request1

1 These objects display only after you create a wallet, generate a certificate request, and import a

certificate into the wallet.

A PKCS #10-encoded message containing the requester's

distinguished name (DN), a public key, the key size, and key type.

Certificate1 An X.509 data structure containing the entity's DN, public key,

and is signed by a trusted identity (certificate authority).

Trusted Certificates1 Sometimes called a root key certificate, is a certificate from a

third party identity that is qualified with a level of trust.

Note: Figure 2–3 shows a certificate request for a user. A certificate can also be requested for a server in which case the CN attribute will contain the name of the server in place of the user name.

Public Key Infrastructure Credentials Management Tools

Configuration and Administration Tools Overview 2-7 Figure 2–3 Certificate Request Information Displayed in Oracle Wallet Manager Right Pane

Toolbar

The toolbar contains buttons that enable you to manage your wallets. Move the mouse cursor over a toolbar button to display a description of the button's function. The toolbar buttons are listed and described in Table 2–2.

Menus

You use Oracle Wallet Manager menus to manage your wallets and the credentials they contain. The following sections describe the options that are available under each menu.

Wallet Menu Table 2–3 describes the contents of the Wallet menu. Table 2–2 Oracle Wallet Manager Toolbar Buttons

Toolbar Button Description

New Creates a new wallet

Open Wallet Enables you to browse your file system to locate and open an existing wallet

Save Wallet Saves the currently open wallet

Delete Wallet Deletes the wallet that is currently selected in the navigator pane

Public Key Infrastructure Credentials Management Tools

Operations Menu Table 2–4 describes the contents of the Operations menu. Table 2–3 Oracle Wallet Manager Wallet Menu Options

Option Description

New Creates a new wallet

Open Opens an existing wallet

Close Closes the currently open wallet

Upload Into The Directory Service

Uploads a wallet to a specified LDAP directory server. You must supply a directory password, host name, and port information.

Download From The Directory Service

Downloads a wallet from a specified LDAP directory server. You must supply a directory password, host name, and port

information.

Save Saves the currently open wallet in the current working directory

Save As Enables you to browse your file system to choose a directory location in which to save the currently open wallet

Save In System Default

Saves the currently open wallet in the system default location:

■ (UNIX) /etc/ORACLE/WALLETS/username ■ (Windows) %USERPROFILE%\ORACLE\WALLETS Delete Deletes the wallet in the current working directory.

You must supply the wallet password.

Change Password Changes the password for the currently open wallet. You must supply the old password before you can create a new one.

Auto Login Sets the auto login feature for the currently open wallet.

Exit Exits the Oracle Wallet Manager application

Table 2–4 Oracle Wallet Manager Operations Menu Options Option Description

Add Certificate Request Generates a certificate request for the currently open wallet that you can use to request a certificate from a certificate authority (CA)

Import User Certificate Imports the user certificate issued to you from the CA. You must import the issuing CA's certificate as a trusted certificate before you can import the user certificate.

Import Trusted Certificate Imports the CA's trusted certificate

Remove Certificate Request

Deletes the certificate request in the currently open wallet. You must remove the associated user certificate before you can delete a certificate request.

Remove User Certificate Deletes the user certificate from the currently open wallet.

Remove Trusted Certificate

Removes the trusted certificate that is selected in the navigator pane from the currently open wallet. You must remove all user certificates that the trusted certificate signs before you can remove it.

Export User Certificate Exports the user certificate in the currently open wallet to save in a file system directory

Export Certificate Request Exports the certificate request in the currently open wallet to save in a file

Duties of a Security Administrator/DBA

Configuration and Administration Tools Overview 2-9 Help Menu Table 2–5 describes the contents of the Help menu.