My Oracle Support Banner

How To Disable TLS1.0/1/1 And Old SSL Versions In Oracle Database (Doc ID 2895314.1)

Last updated on SEPTEMBER 18, 2022

Applies to:

Advanced Networking Option - Version 12.1.0.1 and later
Information in this document applies to any platform.

Goal

 

Follow the steps to disable TLS1.0/1/1 and old SSL versions in Oracle database

 

1.Set SSL_VERSION to 1.2 in both sqlnet.ora and listener.ora

 

Ex:

sqlnet.ora from RDBMS home

===============================

2.Restart database and listener.

3.Check openssl output using the command below to test and it should get rejected.

openssl s_client -connect <hostname> : <port> -tls1_1

openssl s_client -connect <hostname> : <port> -tls1

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.