My Oracle Support Banner

Allow LDAPS Connection With TLS1.1 or TLS1.2 Encryption Certified for Linux OS Running for e6 Server (Doc ID 2443966.1)

Last updated on JULY 28, 2020

Applies to:

Oracle Agile Engineering Data Management - Version 6.1.3.0 and later
Information in this document applies to any platform.

Goal

ACTUAL BEHAVIOR
Not able to login with LDAP user in Java Client after allowing only TLS 1.1 and 1.2
and block TLS1.0 and older unsecure encryption methods on LDAP server.

FACT
1. The e6 server runs on SLES11SP3

2. The SLES 11 infrastructure doesn't support TLS 1.1 & 1.2, so the LDAPS connection from SLES 11 OS to LDAP server in which blocks TLS 1.0 and older
encryption methods will end in error.

The limitation for this on SLES 11 is mentioned in below document from suse.com.
https://www.suse.com/documentation/suse-best-practices/singlehtml/securitymodule/securitymodule.html

3. Security Guide for Agile e6.1.3.0 mentions e6.1.3 support SSL3.0 encryption from a UNIX EDM Server to an Active Directory and from a Windows EDM Server SSL3.1 which is TLS 1.0

https://docs.oracle.com/cd/E52090_11/otn/pdf/install/E50968_02.pdf

p33
LDAP Support

Prerequisites
LDAP Server (Oracle Internet Directory / MS Active Directory / other LDAP server)

Note: Currently we support SSL3.0 encryption from a UNIX EDM Server to an Active Directory.
And from a Windows EDM Server we also support TLS (SSL3.1) encryption.


 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.