OID 11g 11.1.1.9 SSL Protocol Control Configuration Via EM FMW Control Console Not Taking Effect: Even When Selecting Only the "V1" Protocol, It Is Still Possible to Connect to the Server Via SSLv3 (Doc ID 2097285.1)

Last updated on MARCH 01, 2019

Applies to:

Oracle Internet Directory - Version 11.1.1.9.0 and later
Information in this document applies to any platform.

Symptoms

Attempting to restrict TLS protocol version for LDAP connections in OID.
In the"Server SSL properties" field in Enterprise Manager (EM) Fusion Middleware (FMW) Control console, as a part of SSL Settings in Fusion Middleware Control (FM Control), does not work properly.
Even after checking the "V1" protocol field, it is still possible to connect to the server via SSL v3.

Steps to reproduce:

Open [Farm_{DomainName}]->[Identity and Access]
Right click on the OID instance entry (e.g. "oid1") then choose [Administration]->[Server Properties]
In "General" tab, click "Change SSL Settings" which is in right side of "SSL Port" field
Change "Server SSL properties" section
After changed the setting to v1 protocol, connecting to the port via SSLv3 is still possible even though "v1" is checked.

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

OID 11g 11.1.1.9 SSL Protocol Control Configuration Via EM FMW Control Console Not Taking Effect: Even When Selecting Only the "V1" Protocol, It Is Still Possible to Connect to the Server Via SSLv3 (Doc ID 2097285.1)

Applies to:

Symptoms

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!