Skip to main content

Deploy the Client Wallet

The commands in this section are to be run on the Key Manager back ends.

  1. On the Key Manager back ends, create a new directory /etc/sshmgr/oracle_config and provide it with the necessary access rights:

    # mkdir -p /etc/sshmgr/oracle_config
    # chown -R sshmgr:nginx /etc/sshmgr
    # chmod 750 /etc/sshmgr
    # chmod 750 /etc/sshmgr/*

  2. Copy the client wallet files from the Oracle database server to the /etc/sshmgr/oracle_config folder. One way to do this is to use the scp command. In the following command, replace username with the name of a user who can access the client wallet files on the Oracle database server. Replace oracle.example.com with the host name of the Key Manager back end):

    # scp username@oracle.example.com:\
    /usr/lib/oracle/11.2/client64/owm/wallets/client/* \
    /etc/sshmgr/oracle_config

  3. Set the appropriate access rights for the files:

    # chown sshmgr:nginx /etc/sshmgr/oracle_config/*
    # chmod 740 /etc/sshmgr/oracle_config/*

Verify that the ownership and the rights for the wallet files is correct and can be accessed by the group. This can be seen from /var/log/nginx/shmgr_error.log.