My Oracle Support Banner

Understanding SSL Protocols and Configuring Cipher Suites for Oracle WebLogic Server (Doc ID 1484562.1)

Last updated on MARCH 05, 2021

Applies to:

Oracle WebLogic Server - Version 10.3.6 to 12.2.1.3.0
Information in this document applies to any platform.

Purpose

This document is to understand SSL Protocols and what Cipher Suites are and how one can configure/enable the strongest Cipher Suites in WebLogic Server.

STEP 1:
If  looking to avoid older and vulnerable protocols and ciphers in SSL processing in WLS, all versions should be updated with a Patch Set Update (PSU) and updated the JDK. As stated in the below documents:

<Note 2131521.1> Proactively Updating SSL Protocols, Ciphers, and Certificates for Oracle Fusion Middleware
<Note 1067411.1> How To Disable Anonymous and Weak Cipher Suites in Oracle WebLogic Server 
<Note 2162789.1> How to Change SSL Protocols in Oracle Weblogic Server to Disable SSL 2.0/3.0 and Enable TLS 1.x

STEP 2:
If  looking to update protocols and ciphers to further meet your business needs, (e.g. need to configure only specific protocols and ciphers), follow the same documents above. These will be maintained going forward with new updates and recommendations. Also refer to the product Documentation as SSL standards supported change from release to release, especially the newer 12.2.1 releases.

If looking for a further explanation of SSL protocols and ciphers, see the following material. Note the following was written before the above documents and later updated to try to be in sync. The following may no longer be maintained for the newest updates or recommendations. 

 

Scope

Cipher suites play an integral part in establishing secure communications between a client and server using the SSL/TLS protocol. Cipher suites determine the ciphers to be used, the key exchange algorithms as well as message authentication codes.

The SSL protocol uses a combination of public-key and symmetric key encryption. Symmetric key encryption is much faster than public-key encryption, but public-key encryption provides better authentication techniques.

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Scope
Details
 What are SSL / TLS?
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.