Forum Stats

  • 3,760,298 Users
  • 2,251,679 Discussions
  • 7,871,050 Comments

Discussions

Categories

How to change OEM Port 7403 to use TLSv.2

User_5PWBX
User_5PWBX Member Posts: 5 Red Ribbon
edited May 7, 2020 4:05PM in Enterprise Manager

We have an OEM server that needs to eliminate TLSv1.0 and v1.1 in favor of TLSv1.2.

I've identified the one remaining port (7403) and process via the following:

[[email protected]~]# netstat -ltup | grep 7403

tcp        0      0 MyServer52.dcs:7403 0.0.0.0:*               LISTEN      20846/java

[[email protected]~]# ps -ef | grep 20846

root     12189  9288  0 10:54 pts/1    00:00:00 grep --color=auto 20846

oracle   20846 20805  0 Apr21 ?        01:38:08 /opt/app/oracle/middleware/oracle_common/jdk/bin/java -Djava.security.egd=file:///dev/./urandom -Dweblogic.security.SSL.enableJSSE=true -server -Xms32m -Xmx200m -XX:MaxPermSize=128m -Dcoherence.home=/opt/app/oracle/middleware/coherence -Dbea.home=/opt/app/oracle/middleware -Dohs.product.home=/opt/app/oracle/middleware/ohs -DListenAddress=MyServer52.main.state-DNodeManagerHome=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain/nodemanager -DStartScriptName=startEMServer.sh -DStartScriptEnabled=true -DUseKSSForDemo=false -DQuitEnabled=true -DListenPort=7403 -Dweblogic.RootDirectory=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain -Doracle.security.jps.config=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/jps-config-jse.xml -Dcommon.components.home=/opt/app/oracle/middleware/oracle_common -Dopss.version=12.1.3 -Dweblogic.RootDirectory=/opt/app/oracle/gc_inst/user_projects/domains/GCDomain -Xverify:none -Djava.endorsed.dirs=/opt/app/oracle/middleware/oracle_common/jdk/jre/lib/endorsed:/opt/app/oracle/middleware/oracle_common/modules/endorsed -Djava.security.policy=/opt/app/oracle/middleware/wlserver/server/lib/weblogic.policy -Dweblogic.nodemanager.JavaHome=/opt/app/oracle/middleware/oracle_common/jdk weblogic.NodeManager -v

oracle   20935 20846  0 Apr21 ?        00:00:00 /bin/sh /opt/app/oracle/gc_inst/user_projects/domains/GCDomain/bin/startEMServer.sh

oracle   21634 20846  0 Apr21 ?        00:00:00 /bin/sh /opt/app/oracle/gc_inst/user_projects/domains/GCDomain/bin/startEMServer.sh

oracle   24862 20846  0 Apr21 ?        00:00:00 /bin/sh /opt/app/oracle/gc_inst/user_projects/domains/GCDomain/bin/startEMServer.sh

but I'm not a Java guy so what do I do next?

Thanks

· Share on TwitterShare on Facebook

Answers

  • Venkata Thiruveedhi-Oracle
    Venkata Thiruveedhi-Oracle Posts: 590 Employee
    edited May 7, 2020 4:05PM

    Hi,

    7403, i assume is the nodemanager is still not configured with TLSv1.2.

    Follow the steps mentioned in the following document for the WLS nodemanger section:|

    EM 13c: Enterprise Manager 13c Cloud Control Configuration to Support Transport Layer Security Protocol:TLSv1.2 only (Doc ID 2212006.1)

    Best Regards,
    Venkat

    · Share on TwitterShare on Facebook