My Oracle Support Banner

How To Disable TLS1.0/1/1 And Old SSL Versions In Oracle Database (Doc ID 2895314.1)

Last updated on JULY 20, 2024

Applies to:

Advanced Networking Option - Version and later
Information in this document applies to any platform.



Follow the steps to disable TLS1.0/1/1 and old SSL versions in Oracle database


1.Set SSL_VERSION to 1.2 in both sqlnet.ora and listener.ora



sqlnet.ora from RDBMS home


2.Restart database and listener.

3.Check openssl output using the command below to test and it should get rejected.

openssl s_client -connect <hostname> : <port> -tls1_1

openssl s_client -connect <hostname> : <port> -tls1


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.