When installing a certificate (user certificate, trusted certificate), Oracle Wallet Manager uses Table 2 and Table 3 to map the KeyUsage exttension values (Table-1) to Oracle PKI certificate usages:
|
KeyUsage Value |
Critical? |
Usage |
|---|---|---|
|
None. |
na |
Certificate is importable for SSL or S/MIME encryption use. |
|
0 alone, or any combination including 0 but excluding 5 and 2. |
na |
Accept certificate for S/MIME signature or code-signing use. |
|
1 alone. |
Yes |
Not importable. |
|
1 alone. |
No |
Accept certificate for S/MIME signature or code-signing use. |
|
2 alone, or 2 + any combination excluding 5. |
na |
Accept certificate for SSL, or S/MIME encryption use. |
|
5 alone, or any combination including 5. |
na |
Accept certificate for CA certificate signing use. |
|
Any settings not listed above. |
Yes |
Not importable. |
|
Any settings not listed above. |
No |
Certificate is importable for SSL, or S/MIME encryption use. |
See Also:
Table 3: OWM Import of Trusted Certificates to an Oracle Wallet