R12 Environment Fails To Start and Display the Login Page After Implementing SSLv3 Vulnerability Changes Per Note 1937646.1 (Poodle Attack) (Doc ID 2016297.1)

Last updated on APRIL 12, 2017

Applies to:

Oracle E-Business Suite Technology Stack - Version 11.5.10.2 to 12.2 [Release 11.5.10 to 12.2]
Information in this document applies to any platform.

Symptoms

E-Business Suite Applications Technology Stack, HTTP Server for Applications Technology issues

 

 

After following <Note 1937646.1> "Instructions to Mitigate the SSLv3 Vulnerability ("POODLE Attack") in Oracle E-Business Suite" and adding the SSLProtocol all -SSLv2 -SSLv3 and SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM per the document the login page does not display:

ssl_engine_log and error_log show " SSL call to NZ function nzos_Handshake failed with error" 28864, 29014 and 29048.

 

After a restore of the setting back to:

SSLProtocol    -all +TLSv1 +SSLv3

It works fine.

Note:
Server version: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-Server
Server built:   Aug  1 2009 07:55:39

It appears that our environment only works if SSLProtocol has SSLv3 enabled

Changes

Followed <Note 1937646.1> "Instructions to Mitigate the SSLv3 Vulnerability ("POODLE Attack") in Oracle E-Business Suite".

After adding the SSLProtocol all -SSLv2 -SSLv3 and SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM as per the Note, We do not see the login page.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms