1 Reply Latest reply on May 20, 2013 9:57 PM by 1009967

    How to disable weak ciphers in Oracle Application Server?


      we're using Oracle Application Servers (production environment) and (test environment).

      For both servers I get security complaints from our IT-Security department regarding

      "SSL Medium Strength Cipher Suites Supported"

      I have modified 'ssl.conf' for the apache managed ports, e.g. 443, what worked as expected. But there are still complaints on port 12701 (RMIS), which seems to be managed by the OAS directly.

      Can someone please tell me how to configure that?

      with best regards