Skip to Main Content

Breadcrumb

Question and Answer

Connor McDonald

Thanks for the question, Sabin.

Asked: September 02, 2016 - 5:12 am UTC

Last updated: September 04, 2016 - 1:18 pm UTC

Version: 12.1.0.2

Viewed 1000+ times

You Asked

my connection in tnsnames.ora has tcps as protocol .
Does this mean i am using ssl connection and messages are sent encrypted?

Also, i have wallet with self signed certificate in client and server for my development environment. Is this requied for using tcps?

I have seen examples where client and server certificates are exchanged , is it done only if we want to authenticate client and server?

and Connor said...

Yes it does.

The Oracle docs are here

https://docs.oracle.com/cd/E11882_01/network.112/e40393/asossl.htm#ASOAG070

and my understanding is that you always need to exchange the certificates for it to work.

Tim Hall has a nice demo write up for it

https://oracle-base.com/articles/misc/configure-tcpip-with-ssl-and-tls-for-database-connections


Hope this helps.

Rating

  (1 rating)

Is this answer out of date? If it is, please let us know via a Comment

Comments

client certificate

Laurent Schneider, September 02, 2016 - 9:12 am UTC

If don't use client certificates, then you need to specify SSL_CLIENT_AUTHENTICATION=FALSE in both sqlnet.ora and listener.ora
Connor McDonald
September 04, 2016 - 1:18 pm UTC

Thanks for the additional info.
more

Connor and Chris don't just spend all day on AskTOM. You can also catch regular content via Connor's blog and Chris's blog. Or if video is more your thing, check out Connor's latest video and Chris's latest video from their Youtube channels. And of course, keep up to date with AskTOM via the official twitter account.