Modifying the Oracle Database Adapter service form for SSL

To enable SSL communication between the Oracle adapter and the Oracle database, you must configure the Oracle adapter service form.

About this task

Make the following changes to configure the Oracle Database Adapter service form.

Procedure

  1. Select the Use SSL communication with Oracle check box.
  2. Update the Oracle Service Port value to the TCPS port that is listed in the listener.ora file. For example, 2484.
  3. (Optional) Provide a value for Oracle Server Distinguished Name.

    If provided, the adapter verifies this value against the Oracle database server certificate.

    Note:
    • Start both the listener and database services as the user who created the wallet, so both services can access the wallet successfully. On Windows, change the Log On As account for the listener and database services from the default Local System account to wallet creator.
    • The sqlnet.ora and the listener.ora files contain the wallet location. In most cases, both files contain the same wallet location, but the listener might use its own wallet.
      • Use the distinguished name of the certificate from the wallet in the sqlnet.ora file. The Oracle adapter verifies this name when you provide a value for the optional Oracle Server Distinguished Name on the service form.
      • For security, include a distinguished name in the service form to avoid the risk of a server that is faking its identity.
    • For more information about configuring SSL with the Oracle driver, see the white paper "SSL with Oracle JDBC Thin Driver" on the Oracle website.