#EM12c Browser Security – Certificate Installation

One thing that bugs me is browser security.  When I access Oracle Enterprise Manager 12c (OEM12c) through a browser and get the certificate error (Image 1), it just pushes my buttons.   Why not ship a valid certificate with OEM12c?  In reality, the problem is not with OEM12c; it is actually with the browser you choose to use.  In my case, I use Google Chrome a lot with OEM12c.  So how can I get rid of this security certificate warning?

Image 1:
image

To get rid of this warning message, the security certificate needs to be installed in the browser.  Where can I get the security certificate? 

Within Google Chrome, if I right click on the lock (Image 2).

Image 2:
image

I’m presented with a menu (Image 3).  From this menu, I can see that the connection has not been verified.

Image 3:
image

If I click on the “Certificate Information” link, I’m taken to an information dialog about the certificate (Image 4).  The information provided, clearly states that the certificate could not be verified to a trusted certification authority.

Image 4:
image

Obviously,  I need to add the certificate as a trusted authority.  In order to do this, I need to first save the certificate to my hard drive.  This is done from the Details tab (Image 5), you will see a Copy to File option.

Image 5:
image

When clicking on the Copy to File option, it takes me to the Certificate Export wizards (Image 6). Using this wizard, I need to export the certificate to my desktop.

Image 6:
image

I typically export the certificate in a X.509 format (Base –64) (Image 7). 

Image 7:
image

Lastly, I save the certificate to my desktop (Image 8):

Image 8:
image

Finally, close the certificate wizard (Image 9).

Image 9:
image

Now that I have the certificate saved to my desktop, I can import the certificate into the browser as a trusted authority.  In order to do this Google Chrome, I need to go to the Settings page in Chrome (Image 10).

Image 10:

image

Once on the Settings page, I open the Show Advanced Settings (Image 11) and look for HTTPS/SSL  (Image 12) to manage certificates.

Image 11:
image

Image 12:
image

Clicking the Manage Certificates button will open the Certificates dialog (Image 13). I then need to go to the Trusted Root Certification Authorities tab.  On this table I see an import button that I can use to import the certificate I saved to my desktop.

Image 13:
image

Using the import wizard (not pictured), I can import the certificate as a trusted certificate.  As part of the import, I receive a Security Warning, clicking Yes will install the certificate (Image 14).

Image 14:
image

Now that the certificate is installed, the next time I attempt to access fred.acme.com to work with OEM12c, I go directly to the login page (Image 15).

Image 15:
image

 

If you want to know how to install the certificate for Internet Explorer or Firefox, the steps can be found here.

Enjoy!

twitter: @dbasolved

blog: http://dbasolved.com

Please follow and like:

Enquire now

Give us a call or fill in the form below and we will contact you. We endeavor to answer all inquiries within 24 hours on business days.