1. Managing Security for Oracle Analytics Server
  2. Configure SSL in Oracle Analytics Server
  3. Manually Configure SSL Cipher Suite

Manually Configure SSL Cipher Suite

The default SSL configuration uses default cipher suite negotiation. You can configure the system to use a different cipher suite if your organization's security standards do not allow for the default choice. You can view the default choice in the output from the SSL status report.

This advanced option involves editing a configuration file. Be careful to observe the syntactic conventions of this file type.

A manually configured SSL environment can coexist with a default SSL configuration.

  1. Configure SSL.
  2. Select the desired Java Cipher Suite.
  3. Create an Open SSL Cipher Suite Name that matches the cipher suite.

    For example, the Java Cipher Suite name, SSL_RSA_WITH_RC4_128_SHA maps to Open SSL: RSA+RC4+SHA.

  4. Edit the bi-ssl.xml file located at:

    <DOMAIN_HOME>/config/fmwconfig/biconfig/core/ssl/bi-ssl.xml

    Add following child element to the JavaHost/Listener/SSL element, for example: 

    <EnabledCipherSuites>SSL_RSA_WITH_RC4_128_SHA</EnabledCipherSuites>
  5. Restart the Oracle Analytics Server components using:
    ./start.sh