Discussions
Categories
- 197K All Categories
- 2.5K Data
- 546 Big Data Appliance
- 1.9K Data Science
- 450.8K Databases
- 221.9K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 31 Multilingual Engine
- 552 MySQL Community Space
- 479 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3.1K ORDS, SODA & JSON in the Database
- 555 SQLcl
- 4K SQL Developer Data Modeler
- 187.2K SQL & PL/SQL
- 21.4K SQL Developer
- 296.3K Development
- 17 Developer Projects
- 139 Programming Languages
- 293K Development Tools
- 110 DevOps
- 3.1K QA/Testing
- 646.1K Java
- 28 Java Learning Subscription
- 37K Database Connectivity
- 158 Java Community Process
- 105 Java 25
- 22.1K Java APIs
- 138.2K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 19 Java Essentials
- 162 Java 8 Questions
- 86K Java Programming
- 81 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.3K Java SE
- 13.8K Java Security
- 205 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 468 LiveLabs
- 39 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.7K Other Languages
- 2.3K Chinese
- 175 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 233 Portuguese
TLSv1.2 with Thin JDBC driver

I've set up a secure connection, and the handshake connects using TLSv1.
Is there a way to have it negotiate TLSv1.2?
I'm using ojdbc7.jar from 12.1.0.2
Best Answer
-
Thanks for reposting in the correct forum.
Please mark this thread ANSWERED.
Answers
-
4b46e1c7-25c8-482d-80a3-70a2eb58f321 wrote: I've set up a secure connection, and the handshake connects using TLSv1. Is there a way to have it negotiate TLSv1.2? I'm using ojdbc7.jar from 12.1.0.2
why are you posting a question about networking in an Oracle database forum?
Oracle DB has NO inherent or builtin network capability & depends 100% upon the underlying OS for any & all network functionality.
-
Are you explicitly setting the protocol to TLSv2 using one of these methods?
<span class="pun">-</span><span class="typ">Dhttps</span><span class="pun">.</span><span class="pln">protocols</span><span class="pun">=</span><span class="str">"TLSv2"</span><span class="pln"> </span>
<span class="typ">System</span><span class="pun">.</span><span class="pln">setProperty</span><span class="pun">(</span><span class="str">"https.protocols"</span><span class="pun">,</span><span class="pln"> </span><span class="str">"TLSv2"</span>
<span class="pun">);</span>
If you need more help than the above then please mark the thread ANSWERED and repost it in the JDBC forum.
When you repost provide the code you are using that shows how you are connecting.
Also post any info about how the client JVM is being launched and the properties being set:
-
During handshake client and server agree on maximal common protocol. If you defined protocol as TLSv1.2 but actual communication is using TLSv1.0 probably server does not configured to support TLSv1.2+.
-
This may be interested -- https://blogs.oracle.com/java-platform-group/entry/diagnosing_tls_ssl_and_https
-
rp0428 wrote: Are you explicitly setting the protocol to TLSv2 using one of these methods?
<span class="pun">-</span><span class="typ">Dhttps</span><span class="pun">.</span><span class="pln">protocols</span><span class="pun">=</span><span class="str">"TLSv2"</span><span class="pln"> </span>
<span class="typ">System</span><span class="pun">.</span><span class="pln">setProperty</span><span class="pun">(</span><span class="str">"https.protocols"</span><span class="pun">,</span><span class="pln"> </span><span class="str">"TLSv2"</span>
<span class="pun">);</span>
If you need more help than the above then please mark the thread ANSWERED and repost it in the JDBC forum. When you repost provide the code you are using that shows how you are connecting. Also post any info about how the client JVM is being launched and the properties being set:Thank you for a helpful response.
I wasn't aware there was a JDBC-specific forum. When I searched the forums for "JDBC", one of the first hits I got was , which was in the "General" forum, so I thought I would start here.
I've set -Dhttps.protocols to "TLSv1.2", but I continue to get "ClientHello, TLSv1" in the logs.
I will repost in the JDBC forum.
-
Thanks for reposting in the correct forum.
Please mark this thread ANSWERED.