Categories
- All Categories
- 15 Oracle Analytics Sharing Center
- 14 Oracle Analytics Lounge
- 214 Oracle Analytics News
- 42 Oracle Analytics Videos
- 15.7K Oracle Analytics Forums
- 6.1K Oracle Analytics Idea Labs
- Oracle Analytics User Groups
- 78 Oracle Analytics Trainings
- 14 Oracle Analytics Data Visualizations Challenge
- Find Partners
- For Partners
OBIEE 12C and TLSv1.2
Per Oracle's document New Features in Oracle Business Intelligence Security , one of the SSL changes is "Higher security - TLSv1.2 only". Does this mean that if I use MS Active Directory for authentication of users and groups, then MSAD must also support TLSv1.2?
Answers
-
One way to use is SHA-256 certs (TSLV1.2) for SSL in OBIEE and Use non SSL port of MSAD ( in case you cannot update the ldap TSL) when using LDAP authentication in web logic -- Not a best way
Other way is both OBIEE and MSAD must support TLSV1.2 just to have end to end encrypted communication.
In my company they did company wide secuirty upgrade of all applications to use SHA256 certs due to security loop holes in earlier version. So It depends
Thanks
Venkat
0 -
It will also depend on the version of the JDK you are using. Unless you are using the latest jdk 7 patch or jdk 8, TLS 1.2 is only by default applied to HTTPS protocol but ommited for LDAPS when making connections as a client. You can change the behaviour by changing settings in java.security config file in the jre security folder.
0