Steps:
In order to Configure Workflow Java Mailer with IMAP and SMTP email servers SSL enabled, need to perform the below steps
1. Export the Certificate from the Email server.
2. Create a keystore on the Concurrent Manager Tire. Import the certificate to keystore
3. Configure the Mailer to work with IMAPSSL / SMTPSSL.
4. Steps for Debugging the Mailer.
5. R12.1.3 feature - Mailer Authentication
Protocol: SMTP/SSL Port : 465
Protocol: IMAP/SSL Port : 993
1. Export the Certificate from the Email server.
In order to be able to establish a Secure communication channel, the certificate from the Email Server (issued by a Certification Authority) needs to be imported on the Concurrent Manager Tire.
The email server certificate issued by a trusted Certification Authority (i.e. Verisign), can be obtain from the System Administrator or downloaded by following the below steps:
A. Access your main web page https://<host.domain:port>.
B. Double-click on the padlock at the bottom of the page to view the Certificates.
If there is no padlock, then on the top toolbar:
select File->Properties->Certificates
C. Select the Certification Path tab and:
a) click on the first line and then View Certificate. - This will be the certificate for the root Certifying Authority (CA).
b) On Details tab click Copy to File, this will start the export wizard.
c) Click Next to continue.
d) Select Base-64 encoded X.509 (.CER) and click next.
e) Enter ca1 as the name and click ok to export the certificate.
f) Repeat steps a thru e for each line on the Certification Path tab incrementing the file name each time by 1, i.e. ca2, ca3.
2. Create a keystore on the Concurrent Manager Tire. Import the certificate to keystore
a. Create a keystore that holds the certificate, use the default location (i.e. /home/applmgr)
keytool -genkey -alias -keystore -storetype JKS
b. Upload the Certificate to the Concurrent Manager tire using a ftp tool then import the certificate into the created keystore:
keytool -import -alias my_cert -file server.cer -keystore .keystore -storepass workflow
c.Verify the cetificate
keytool -list -keystore .keystore
d. Set MAILER_SSL_TRUSTSTORE (i.e. /home/applmgr/.keystore )
From sqlplus:
$FND_TOP/sql/afsvcpup.sql
3. Configure the Mailer to work with IMAPSSL / SMTPSSL
Navigation: Log on to OAM >System Administrator > Workflow Manager > Notification Mailer Link
a. Enter Outbound Server Name and validate check-box Outbound SSL Enable
b. Enter Inbound Server name , Username, Password, Reply-to Address and validate check-box Inbound SSL Enable.
After this process you are not able to stat the workflow service then you can use belwo commadn to debug.
4. Debugging Steps (i.e. for a R12 Instance)
a. SMTP
$AFJVAPRG -classpath $AF_CLASSPATH -Dprotocol=smtp \
-Ddbcfile=$FND_SECURE/TEST.dbc \
-Dport=465 -Dssl=Y \
-Dtruststore=/home/applmgr/.keystore \
-Dserver=email.yourdomain.com \
-Daccount=youremail@yourdomain.com -Dpassword=xxxxx \
-Dconnect_timeout=120 -Ddebug=Y \
-DdebugMailSession=Y oracle.apps.fnd.wf.mailer.Mailer
b. IMAP
$AFJVAPRG -classpath $AF_CLASSPATH -Dprotocol=imap \
-Ddbcfile=$FND_SECURE/TEST.dbc \
-Dport=993 -Dssl=Y \
-Dtruststore=/home/applmgr/.keystore \
-Dserver=email.yourdomain.com \
-Daccount=youremail@yourdomain.com -Dpassword=xxxxx\
-Dconnect_timeout=120 -Ddebug=Y \
-DdebugMailSession=Y oracle.apps.fnd.wf.mailer.Mailer
In order to Configure Workflow Java Mailer with IMAP and SMTP email servers SSL enabled, need to perform the below steps
1. Export the Certificate from the Email server.
2. Create a keystore on the Concurrent Manager Tire. Import the certificate to keystore
3. Configure the Mailer to work with IMAPSSL / SMTPSSL.
4. Steps for Debugging the Mailer.
5. R12.1.3 feature - Mailer Authentication
Protocol: SMTP/SSL Port : 465
Protocol: IMAP/SSL Port : 993
1. Export the Certificate from the Email server.
In order to be able to establish a Secure communication channel, the certificate from the Email Server (issued by a Certification Authority) needs to be imported on the Concurrent Manager Tire.
The email server certificate issued by a trusted Certification Authority (i.e. Verisign), can be obtain from the System Administrator or downloaded by following the below steps:
A. Access your main web page https://<host.domain:port>.
B. Double-click on the padlock at the bottom of the page to view the Certificates.
If there is no padlock, then on the top toolbar:
select File->Properties->Certificates
C. Select the Certification Path tab and:
a) click on the first line and then View Certificate. - This will be the certificate for the root Certifying Authority (CA).
b) On Details tab click Copy to File, this will start the export wizard.
c) Click Next to continue.
d) Select Base-64 encoded X.509 (.CER) and click next.
e) Enter ca1 as the name and click ok to export the certificate.
f) Repeat steps a thru e for each line on the Certification Path tab incrementing the file name each time by 1, i.e. ca2, ca3.
2. Create a keystore on the Concurrent Manager Tire. Import the certificate to keystore
a. Create a keystore that holds the certificate, use the default location (i.e. /home/applmgr)
keytool -genkey -alias -keystore -storetype JKS
b. Upload the Certificate to the Concurrent Manager tire using a ftp tool then import the certificate into the created keystore:
keytool -import -alias my_cert -file server.cer -keystore .keystore -storepass workflow
c.Verify the cetificate
keytool -list -keystore .keystore
d. Set MAILER_SSL_TRUSTSTORE (i.e. /home/applmgr/.keystore )
From sqlplus:
$FND_TOP/sql/afsvcpup.sql
3. Configure the Mailer to work with IMAPSSL / SMTPSSL
Navigation: Log on to OAM >System Administrator > Workflow Manager > Notification Mailer Link
a. Enter Outbound Server Name and validate check-box Outbound SSL Enable
b. Enter Inbound Server name , Username, Password, Reply-to Address and validate check-box Inbound SSL Enable.
After this process you are not able to stat the workflow service then you can use belwo commadn to debug.
4. Debugging Steps (i.e. for a R12 Instance)
a. SMTP
$AFJVAPRG -classpath $AF_CLASSPATH -Dprotocol=smtp \
-Ddbcfile=$FND_SECURE/TEST.dbc \
-Dport=465 -Dssl=Y \
-Dtruststore=/home/applmgr/.keystore \
-Dserver=email.yourdomain.com \
-Daccount=youremail@yourdomain.com -Dpassword=xxxxx \
-Dconnect_timeout=120 -Ddebug=Y \
-DdebugMailSession=Y oracle.apps.fnd.wf.mailer.Mailer
b. IMAP
$AFJVAPRG -classpath $AF_CLASSPATH -Dprotocol=imap \
-Ddbcfile=$FND_SECURE/TEST.dbc \
-Dport=993 -Dssl=Y \
-Dtruststore=/home/applmgr/.keystore \
-Dserver=email.yourdomain.com \
-Daccount=youremail@yourdomain.com -Dpassword=xxxxx\
-Dconnect_timeout=120 -Ddebug=Y \
-DdebugMailSession=Y oracle.apps.fnd.wf.mailer.Mailer
