Oracle Wallet Manager setup

The Experian Net Connect, Equifax Internet System to System, and CSC interfaces within the system credit bureau service use functionality provided by the Oracle Wallet feature. Use the Oracle Wallet Manager on the database server to create and export a wallet for use by the credit bureau service.

Note:

All of the above mentioned interfaces use the same Oracle wallet. If a wallet already exists and is in use by one of the credit bureau interfaces, there is no need to create another wallet. Due to differing certificate requirements, there may be a need to import additional trusted certificates into the wallet, but there will not be a need to create a new one. The credit bureau parameter ORA_WALLET_PATH contains the location of the Oracle Wallet used by the credit bureau service.

Refer to the Oracle documentation for more detailed instructions on how to use the Oracle Wallet Manager to create and manage a wallet:

If a wallet does not already exist, create one somewhere on the database server. The location must be readable and writable by the Oracle user. Make a note of the full path where the wallet is stored (for example, /etc/ORACLE/WALLETS/oracle or C:\oracle\WALLETS).
For Transunion credit bureau, a separate wallet file is needed under transunion folder inside the main wallet path (for example: /etc/ORACLE/WALLETS/oracle/transunion or C:\oracle\WALLETS\transunion).

The wallet needs to contain the public key for the certificate authority that issued the server certificate for each HTTPS web site that will be connected to by the credit bureau interface. At the time of this document, those sites are:

Table 3-41 Credit Bureau Location

Location	Credit Bureau
Experian Credit Bureau (https://dm1.experian.com/netconnect2_0Demo/servlets/NetConnectServlet)	Experian
Equifax Credit Bureau (https://api.uat.equifax.com/business/sts-reports/v1/report)	Equifax
CSC Credit Bureau (https://emsws.equifax.com/emsws/services/post/MergeCreditWWW)	CSC
Transunion Credit Bureau (https://netaccess-test.transunion.com)	TUC

This list may change. Use the URL provided to you by the credit bureau when they set up your service. To get the proper Experian HTTPS URL, enter the ECALS URL that was provided by Experian into a web browser. The response returned to the browser is the HTTPS URL that will be used to communicate with Experian.

Import the necessary certificate authority’s certificate files into the Oracle wallet that was created in Step 1. See the appendix of this chapter for detailed instructions of how to download and install a trusted certificate.
Test the wallet by connecting to each web site with a simple command issued from SQLPlus.
```
SQL> select utl_http.request('https://ss1.experian.com', NULL,
'file:/etc/ORACLE/WALLETS/oracle', 'password') from dual;
```
Replace the URL in the above command with each HTTPS URL given to you for use by the credit bureaus. Also replace the wallet path with the path to your wallet and your wallet password. The output from the command is not important, what is important is that it runs without displaying an Oracle error. If there is an Oracle error, then something is wrong with the contents of the wallet, the path to the wallet, and/or the wallet password.
When the wallet contains all of the required trusted certificates, export the wallet to a text file. On the Operations menu of the Oracle Wallet Manager, choose Export All Trusted Certificates. The text file MUST be located in the same directory as the wallet and the filename MUST be default.txt. Anytime a change is made to the trusted certificates in the wallet, the wallet must be re-exported to the same text file.
In the Setup > Setup > Credit Bureau > Parameters set the ORA_WALLET_PATH and ORA_WALLET_PASSWORD parameters.