Last updated on MAY 02, 2017
Applies to:Oracle Fusion Sales Cloud Service - Version 126.96.36.199.0 and later
Information in this document applies to any platform.
Users do not receive emails from from any task in Fusion even thought the Work flow Email notifications are set to ALL .
The issue can be reproduced at will with the following steps:
This Error shows that there is handshake failure between oracle system and the client user environment .
1. Customers using OpenSSL / Sendmail to process Inbound emails, need to upgrade OpenSSL to version 1.0.1t / Sendmail to version 8.15.1. Also enable support for TLSv1.0 or higher
2. Customers using third party email gateways, should contact their service providers to get their appliances to support 1024bit DH key exchanges. Also enable support for TLSv1.0 or higher
Oracle Change Information:
Mandated security fixes were applied on Outbound SMTP gateways, to avoid security gaps. This updated OpenSSL / Sendmail packages to recommended versions among others. Updated version of OpenSSL which initiate and negotiate TLS encryption, will only accept DH ciphers (Diffe Hellman) exchange using 1024bits as minimum. Previous version accepted exchanges with 768 bits as minimum.
As a result of increase in the minimum key exchange bits, any receiving servers which offered TLS encryption and offered the exchange with a value less than 1024bits, Oracle Outbound gateways would Reject the offer to encrypt and hence result in email from not being relayed to the user server. Administrators should see connection requests from <host>/9999.oraclecloud.com (9188.8.131.52/9184.108.40.206) with SSL errors on their Inbound email gateways.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms