Corporation Network Router User Manual
orapki Utility Overview
E-2 Oracle Database Advanced Security Administrator's Guide
orapki Utility Overview
This command line utility can be used to perform the following tasks:
■ Creating and viewing signed certificates for testing purposes
■ Manage Oracle wallets:
– Create and display Oracle wallets
– Add and remove certificate requests
– Add and remove certificates
– Add and remove trusted certificates
■ Manage certificate revocation lists (CRLs):
– Renaming CRLs with a hash value for certificate validation
– Uploading, listing, viewing, and deleting CRLs in Oracle Internet Directory
orapki Utility Syntax
The basic syntax of the orapki command line utility is as follows:
orapki module command -parameter <value>
where module can be wallet (Oracle wallet), crl (certificate revocation list), or
cert (PKI digital certificate). The available commands depend on the module you
are using. For example, if you are working with a wallet, then you can add a
certificate or a key to the wallet with the add command. The following example
adds the user certificate located at /private/lhale/cert.txt to the wallet
located at $ORACLE_HOME/wallet/ewallet.p12:
orapki wallet add -wallet $ORACLE_HOME/wallet/ewallet.p12 -user_cert -cert
/private/lhale/cert.txt