Infrastructure Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Oracle VM - 3.4.6.2 - OVS server :8899 - TLS1 (how to enforce TLS1.2?)

morgan coxMay 6 2020 — edited May 9 2020

Hi.

Network security scans are showing all Oracle VM servers are allowing TLS1 on port 8899.

I have seen this article -> https://docs.oracle.com/cd/E64076_01/E64078/html/vmiug-manager-tls1-enable.html

And can confirm I haven't got the 'ALLOWTLS1=YES' option on the Oracle VM manager.

i.e

On a OVS server ->

openssl s_client -connect 127.0.0.1:8899

Shows

----

SSL handshake has read 1359 bytes and written 577 bytes

New, TLSv1/SSLv3, Cipher is AES256-GCM-SHA384

Server public key is 2048 bit

Secure Renegotiation IS supported

Compression: NONE

Expansion: NONE

----

How can I enforce TLS 1.2 on the port ovs-agent is using - 8899 ?

Thanks

Added on May 6 2020

#oracle-virtualization, #oracle-vm-server-for-x86

1 comment

537 views