Enabling TLS-Only on WebLogic

This section discusses the configurations for enabling TLS-Only on WebLogic.

The weblogic.security.SSL.protocolVersion command-line argument lets you specify which protocol is used for SSL connections.

To enable TLS-only on WebLogic Server:

Open <PIA_HOME>/webserv/<domain_name>/bin/setEnv.cmd (Windows) or setEnv.sh (UNIX) in edit mode.

Append the following option to the JAVA_OPTIONS variable:

-Dweblogic.security.SSL.protocolVersion=TLS1

For example, on Windows in the setEnv.cmd, the updated JAVA_OPTIONS_WIN would appear as:

SET JAVA_OPTIONS_WIN=-jrockit -XnoOpt -XXnoJITInline -Xms512m -Xmx512m
-Dtoplink.xml.platform=oracle.toplink.platform.xml.jaxp.JAXPPlatform
-Dweblogic.security.SSL.protocolVersion=TLS1

Save the change.
Restart PeopleSoft Internet Architecture.

For more information about Supporting TLS1 protocol, refer to the Oracle WebLogic documentation for specifying the version of SSL to be used.

See Specifying the SSL Protocol Version..

It is strongly recommended that you access the vendor's documentation of the web server you are using for a reverse proxy server and use their instructions for setting up TLS.

Enabling TLS-Only on WebLogic

Configuring TLS-Only on WebLogic Server

Configuring Reverse Proxy Servers for TLS