Using mod_ossl to authenticate users, Enabling ssl – Oracle B12255-01 User Manual

Authentication and Authorization Enforcement

8-10

Oracle HTTP Server Administrator’s Guide

Using mod_ossl to Authenticate Users

Secure Sockets Layer (SSL) is an encrypted communication protocol that is designed
to securely send messages across the Internet. It resides between Oracle HTTP
Server on the application layer and the TCP/IP layer, transparently handling
encryption and decryption when a secure connection is made by a client.

One common use of SSL is to secure Web HTTP communication between a browser
and a Web server. This case does not preclude the use of non-secured HTTP. The
secure version is simply HTTP over SSL (named HTTPS). The differences are that
HTTPS uses the URL scheme https:// rather than http://, and its default
communication port is 4443.

mod_ossl

is a plug-in to Oracle HTTP Server that enables the server to use SSL.

mod_ossl

replaces mod_ssl in the Oracle HTTP Server distribution. Oracle no

longer supports mod_ssl.

Enabling SSL

By default, SSL is disabled when you install Oracle Database. If you want to enable
SSL after installation, perform the following steps:

1.

Open

opmn.xml

in a text editor.

2.

In the <ias-component id=HTTP_Server> entry, change the start mode
from “ssl-disabled” to “ssl-enabled”. After modification is made, the entry
should look like the following:

<data id="start-mode" value="ssl-enabled"/>

3.

Save and close opmn.xml.

4.

Reload OPMN using the following command:

opmnctl reload

AuthUserFile

Specifies the path to a file that contains user names and passwords.

AuthGroupFile

Specifies the path to a file that contains group names and their
members.

See Also:

"Using mod_ossl"

on page 8-12 for detailed information

regarding mod_ossl.

Table 8–1

Directives Descriptions (Cont.)

Directive Name

Description