To enable SSL communication between the Oracle adapter and the Oracle database, you must
configure the Oracle adapter service form.
About this task
Make the following changes to configure the Oracle Database Adapter service form.
Procedure
-
Select the Use SSL communication with Oracle check box.
- Update the Oracle Service Port value to the TCPS port that is listed in the
listener.ora file. For example,
2484
.
- (Optional) Provide a value for Oracle Server Distinguished Name.
If provided, the adapter verifies this value against the Oracle database server certificate.
Note:
- Start both the listener and database services as the user who created the wallet, so both
services can access the wallet successfully. On Windows, change the Log On As account for the
listener and database services from the default Local System account to wallet creator.
- The sqlnet.ora and the listener.ora files contain the wallet location. In most cases, both files
contain the same wallet location, but the listener might use its own wallet.
- Use the distinguished name of the certificate from the wallet in the sqlnet.ora file. The Oracle
adapter verifies this name when you provide a value for the optional Oracle Server Distinguished
Name on the service form.
- For security, include a distinguished name in the service form to avoid the risk of a server
that is faking its identity.
- For more information about configuring SSL with the Oracle driver, see the white paper "SSL with
Oracle JDBC Thin Driver" on the Oracle website.