| Oracle Advanced Security [message #484876] |
Fri, 03 December 2010 08:53  |
preet_kumar
Messages: 204
Registered: March 2007
|
Senior Member |
|
|
Is Oracle Advanced Security installed default while installing Oracle Enterprise edition or we need to install it additionally.
Is it possible to use only SSL and wallet to secure the network between the apps and database with the default installation of Oracle Enterprise Edition?
|
|
|
|
|
|
| Re: Oracle Advanced Security [message #484892 is a reply to message #484889] |
Fri, 03 December 2010 10:01  |
preet_kumar
Messages: 204
Registered: March 2007
|
Senior Member |
|
|
Thank you Michel for your response.
Oracle Advanced Security consists of many features but we only looking for SSL and it would be a waste to purchase this option.
The scenario is of corporate LAN,the Database Server and the Client PC's(running SQL Workbench) are on the same subnet so we cannot create any VPN network and creating a ssh tunnel for every user is not feasible.The Database listener listens on TCP port 1521 so when a users run a query and it passes through the network unencrypted.
I came across documentation which states that to use TCPS on port 2484 one need to use wallet(store certificate) and Oracle Advanced Security option should be installed.
[Updated on: Fri, 03 December 2010 10:04] Report message to a moderator |
|
|
|
| Re: Oracle Advanced Security [message #484894 is a reply to message #484892] |
Fri, 03 December 2010 10:04 |
 |
BlackSwan
Messages: 26766
Registered: January 2009
Location: SoCal
|
Senior Member |
|
|
>we only looking for SSL and it would be a waste to purchase this option.
user<=>browser<=>WebServer<=>ApplicationServer<=>DatabaseServer
Above is typical 3 tier environment & SSL only exists between browser & WebServer.
SSL rarely, if ever, gets close to the DB!
[Updated on: Fri, 03 December 2010 10:05] Report message to a moderator |
|
|
|
|
|
|
|
|
|
|
|
|
|
| Re: Oracle Advanced Security [message #484901 is a reply to message #484900] |
Fri, 03 December 2010 10:58 |
preet_kumar
Messages: 204
Registered: March 2007
|
Senior Member |
|
|
Thanks Michel.
Could you please refer me some any Documentation to use network native encryption with wallet management without using Oracle Advanced Security.
That would be great to get it working in 10min as you have mentioned.
|
|
|
|
| Re: Oracle Advanced Security [message #484902 is a reply to message #484901] |
Fri, 03 December 2010 11:17 |
 |
Michel Cadot
Messages: 68729
Registered: March 2007
Location: Saint-Maur, France, https...
|
Senior Member
Account Moderator |
|
|
I will do more than that, I wrote a small article in the wiki, see Network Encryption. You will see how easy it is to configure it (I even think it is preinstalled with Entreprise Edition, so you can make a test -- but can't use it in production without ASO).
Note: You MUST purchase ASO/OAS option to use it.
Regards
Michel
[Updated on: Fri, 03 December 2010 11:27] Report message to a moderator |
|
|
|
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
