Emails Not Delivered To User From Any Task in Fusion (Doc ID 2255461.1)

Last updated on MAY 02, 2017

Applies to:

Oracle Fusion Sales Cloud Service - Version 11.1.11.1.0 and later
Information in this document applies to any platform.

Symptoms

Users do not receive  emails from from any task in Fusion even thought the Work flow Email notifications are set to ALL .

 The issue can be reproduced at will with the following steps:


This Error shows that there is handshake  failure between oracle system and the client user environment  .

 

Corrective Actions
1. Customers using OpenSSL / Sendmail to process Inbound emails, need to upgrade OpenSSL to version 1.0.1t / Sendmail to version 8.15.1. Also enable support for TLSv1.0 or higher
2. Customers using third party email gateways, should contact their service providers to get their appliances to support 1024bit DH key exchanges. Also enable support for TLSv1.0 or higher

Changes

Oracle Change Information:

Mandated security fixes were applied on Outbound SMTP gateways, to avoid security gaps. This updated OpenSSL / Sendmail packages to recommended versions among others. Updated version of OpenSSL which initiate and negotiate TLS encryption, will only accept DH ciphers (Diffe Hellman) exchange using 1024bits as minimum. Previous version accepted exchanges with 768 bits as minimum.

Effect
As a result of increase in the minimum key exchange bits, any receiving servers which offered TLS encryption and offered the exchange with a value less than 1024bits, Oracle Outbound gateways would Reject the offer to encrypt and hence result in email from not being relayed to the user server. Administrators should see connection requests from <host>/9999.oraclecloud.com (999.99.99.99/999.99.99.99) with SSL errors on their Inbound email gateways.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms