1. Owner's Guide
  2. Installation and Configuration
  3. Installing the Recovery Appliance Software
  4. Setting Up Enterprise Manager to Administer Recovery Appliance
  5. Monitoring TLS-enabled Targets with EM Agents

Monitoring TLS-enabled Targets with EM Agents

Enterprise Manager (EM or Cloud Control) Agents can monitor targets that use TCPS.

A wallet needs to be setup at the EM repository. This wallet should contain the certificates needed to connect to the TLS-enabled target. In addition, Agent specific wallet properties have to be set.

  1. Create a wallet for the EM agent.
    orapki wallet create -wallet <agent_wallet_location> -auto_login -pwd <agent_password_wallet>
  2. Add certificates to this wallet.
    orapki wallet add -wallet <agent_wallet_location> -trusted_cert -cert <certFile>
  3. Set the wallet properties for the Agent.
    <AGENT_HOME>/bin>emctl setproperty agent -name connectionTrustStoreType -value PKCS12

<AGENT_HOME>/bin>emctl  setproperty agent -name connectionTrustStoreLocation -value <agent_wallet_location>/ewallet.p12

<AGENT_HOME>/bin>emctl setproperty agent -name connectionTrustStorePassword -value <agent_password_wallet>
  4. Restart the agent.
  5. Repeat from the beginning for any database being monitored that uses TLS (TCPS).

    Add the database certificate to the wallet for the agent on the database's host.