1 Reply Latest reply: May 20, 2013 4:57 PM by 1009967 RSS

    How to disable weak ciphers in Oracle Application Server?

    1004872
      Hello,

      we're using Oracle Application Servers 10.1.2.0.2 (production environment) and 10.1.3.1.0 (test environment).

      For both servers I get security complaints from our IT-Security department regarding

      "SSL Medium Strength Cipher Suites Supported"

      I have modified 'ssl.conf' for the apache managed ports, e.g. 443, what worked as expected. But there are still complaints on port 12701 (RMIS), which seems to be managed by the OAS directly.

      Can someone please tell me how to configure that?


      with best regards

      Matthias