Oracle Traffic Director (OTD) is the last software load balancer released and is based on iPlanet Web Server. It is a fast, reliable, and scalable layer-7 software load balancer that you can deploy as the reliable entry point for all HTTP and HTTPS traffic to application servers and web servers in your network. It leverage the NSS Shared DB for storing the private key and certificates for the SSL encryption and if you are looking to decrypt the SSL traffic using the private key, you would require to first extract it and the steps for it are as under:
For some reason, the pk12util that comes with OTD installation did not work for me so I have to move the cert9.db and key4.db onto my windows machine and follow the below steps:
For some reason, the pk12util that comes with OTD installation did not work for me so I have to move the cert9.db and key4.db onto my windows machine and follow the below steps:
- Downloaded NSS Tools for windows from here: NSS_Tools_x86_from_NSS_3.12.7 Tools.zip into C:\
- Copied the key4.db and cert9.db to “C:\Users\nj\keys” folder
- Go to command prompt (cmd C: ) and executue c:\pk12util.exe -o C:\Users\nj\keys\cert.p12 -d sql:C:\Users\nj\keys -n "<
>" (populated on SSL >> Server Certificates on OTD Admin Console) - Prompted for password, enter <
> - This should create a cert.p12 under keys folder
- Use OpenSSL to execute: openssl pkcs12 –in cert.p12 –out private.key –nocerts –nodes
- Prompted for password, enter <
> - private.key file should be created in the folder
No comments:
Post a Comment