Enabling SSL
Configuring Secure Sockets Layer Authentication 7-23
To set the SQLNET.AUTHENTICATION_SERVICES parameter on the server:
Add TCP/IP with SSL (TCPS) to this parameter in the sqlnet.ora file by using a
text editor. For example, if you want to use SSL authentication in conjunction with
RADIUS authentication, set this parameter as follows:
SQLNET.AUTHENTICATION_SERVICES = (TCPS, radius)
If you do not want to use SSL authentication in conjunction with another
authentication method, then do not set this parameter.
Step 7: Create Listening Endpoint that Uses TCP/IP with SSL on the Server
Configure the listener with a TCP/IP with SSL listening endpoint in the
listener.ora file. Oracle Corporation recommends using port number 2484 for
typical Oracle Net clients.
Task 3: Configure SSL on the Client
To configure SSL on the client:
■ Step 1: Confirm Client Wallet Creation
■ Step 2: Configure Oracle Net Service Name to Include Server DNs and Use
TCP/IP with SSL on the Client
■ Step 3: Specify Required Client SSL Configuration (Wallet Location)
■ Step 4: Set the Client SSL Cipher Suites (Optional)
■ Step 5: Set the Required SSL Version on the Client (Optional)
■ Step 6: Set SSL as an Authentication Service on the Client (Optional)
See Also:
■ Oracle Net Services Administrator's Guide. for detailed
information about configuring the listener.ora file
■ "Certificate Validation with Certificate Revocation Lists" on
page 7-35 for information about configuring your system to
validate certificates with certificate revocation lists
See Also: Appendix B, "Authentication Parameters", for the
dynamic parameter names.
To Next Page
Loading...