My Oracle Support Banner

CMAN: ORA-12564 Using Native Encryption Settings at Connection Manager Server or CMAN (Doc ID 1538702.1)

Last updated on MARCH 31, 2022

Applies to:

Oracle Net Services - Version to [Release 11.2 to 12.2]
Advanced Networking Option - Version to [Release 11.2 to 12.2]
Information in this document applies to any platform.


Attempting to implement native encryption or assure integrity in a client-server connection that goes through CMAN. The following sqlnet.ora parameters have been added to the sqlnet.ora on CMAN server at $ORACLE_HOME/network/admin or $TNS_ADMIN (or CMAN.ORA):

Connections via this CMAN start to fail with the following error:

TNS-12564:  TNS:  Connection refused


If aso_authentication_filter is set to on (or aut=on) in CMAN rules, then the client connections can fail with ORA-12564.

If trying to encrypt a client-server connection by adding these sqlnet.ora parameters in sqlnet.ora on CMAN server, these setting are ignored by CMAN.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.