This site is currently read-only as we are migrating to Oracle Forums for an improved community experience. You will not be able to initiate activity until January 30th, when you will be able to use this site as normal.

    Forum Stats

  • 3,889,913 Users
  • 2,269,775 Discussions
  • 7,916,823 Comments

Discussions

How to change OEM Port 7403 to use TLSv.2

User_5PWBX
User_5PWBX Member Posts: 5 Red Ribbon
edited May 7, 2020 4:05PM in Enterprise Manager

We have an OEM server that needs to eliminate TLSv1.0 and v1.1 in favor of TLSv1.2.

I've identified the one remaining port (7403) and process via the following:

[[email protected]~]# netstat -ltup | grep 7403

tcp        0      0 MyServer52.dcs:7403 0.0.0.0:*               LISTEN      20846/java

[[email protected]~]# ps -ef | grep 20846

root     12189  9288  0 10:54 pts/1    00:00:00 grep --color=auto 20846

oracle   20846 20805  0 Apr21 ?        01:38:08 /opt/app/oracle/middleware/oracle_common/jdk/bin/java -Djava.security.egd=file:///dev/./urandom -Dweblogic.security.SSL.enableJSSE=true -server -Xms32m -Xmx200m -XX:MaxPermSize=128m -Dcoherence.home=/opt/app/oracle/middleware/coherence -Dbea.home=/opt/app/oracle/middleware -Dohs.product.home=/opt/app/oracle/middleware/ohs -DListenAddress=MyServer52.main.state-DNodeManagerHome=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain/nodemanager -DStartScriptName=startEMServer.sh -DStartScriptEnabled=true -DUseKSSForDemo=false -DQuitEnabled=true -DListenPort=7403 -Dweblogic.RootDirectory=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain -Doracle.security.jps.config=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/jps-config-jse.xml -Dcommon.components.home=/opt/app/oracle/middleware/oracle_common -Dopss.version=12.1.3 -Dweblogic.RootDirectory=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain -Xverify:none -Djava.endorsed.dirs=/opt/app/oracle/middleware/oracle_common/jdk/jre/lib/endorsed:/opt/app/oracle/middleware/oracle_common/modules/endorsed -Djava.security.policy=/opt/app/oracle/middleware/wlserver/server/lib/weblogic.policy -Dweblogic.nodemanager.JavaHome=/opt/app/oracle/middleware/oracle_common/jdk weblogic.NodeManager -v

oracle   20935 20846  0 Apr21 ?        00:00:00 /bin/sh /opt/app/oracle/gc_inst/user_projects/domains/GCDomain/bin/startEMServer.sh

oracle   21634 20846  0 Apr21 ?        00:00:00 /bin/sh /opt/app/oracle/gc_inst/user_projects/domains/GCDomain/bin/startEMServer.sh

oracle   24862 20846  0 Apr21 ?        00:00:00 /bin/sh /opt/app/oracle/gc_inst/user_projects/domains/GCDomain/bin/startEMServer.sh

but I'm not a Java guy so what do I do next?

Thanks

Answers

  • Venkata Thiruveedhi-Oracle
    Venkata Thiruveedhi-Oracle Senior Principal Software Engineer Bangalore, IndiaPosts: 592 Employee
    edited May 7, 2020 4:05PM

    Hi,

    7403, i assume is the nodemanager is still not configured with TLSv1.2.

    Follow the steps mentioned in the following document for the WLS nodemanger section:|

    EM 13c: Enterprise Manager 13c Cloud Control Configuration to Support Transport Layer Security Protocol:TLSv1.2 only (Doc ID 2212006.1)

    Best Regards,
    Venkat