Scribd Logo
Upload

Welcome to Scribd!

  • Applies To:: How To Enable TCPS Support For Oracle Standard Edition (Doc ID 1457854.1)

    Uploaded by

    Karthika Tatiparthi
    63 views4 pages

    Original Title

    Document 1457854.1

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    63 views4 pages

    Applies To:: How To Enable TCPS Support For Oracle Standard Edition (Doc ID 1457854.1)

    Uploaded by

    Karthika Tatiparthi

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    Copyright (c) 2020, Oracle. All rights reserved. Oracle Confidential.

    How To Enable TCPS Support For Oracle Standard Edition (Doc ID 1457854.1)

    In this Document

    Goal
    Solution
    References

    APPLIES TO:

    Oracle Net Services - Version 10.2.0.3.0 and later


    Advanced Networking Option - Version 11.2.0.4 to 11.2.0.4 [Release 11.2]
    Generic UNIX
    Generic Linux

    GOAL

    This document will show the steps required to manually add TCPS support to Oracle Standard Edition installations. TCPS is required for RAC installations implementing COST* and also for client/server database connectivity using
    SSL.

    *The class of secure transports (COST) parameters specify a list of transports that are considered secure for administration and registration of a particular listener. The COST parameters identify which transports are considered
    secure for that installation and whether the administration of a listener requires secure transports.

    Standard Edition installations on Windows do not require additional steps to enable TCPS and can be configured for usage as needed. To enable the ASO menu selections in Oracle Net Manager (NetMgr) please refer to Doc ID
    156345.1 - "Oracle Net Configuration Tools Do Not Show Advanced Security (ASO) Pulldown".

    Without TCPS protocol support a listener started with a TCPS address in listener.ora will error:

    LSNRCTL> start
    Starting /home/app/oracle/product/SE11203/bin/tnslsnr: please wait...

    TNSLSNR for Linux: Version 11.2.0.3.0 - Production


    System parameter file is /home/app/oracle/product/SE11203/network/admin/listener.ora
    Log messages written to /home/app/oracle/diag/tnslsnr/<hostname>/listener/alert/log.xml
    Listening on:
    (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=<hostname>.<domain>)(PORT=1888)))
    Error listening on:
    (DESCRIPTION=(ADDRESS=(PROTOCOL=TCPS)(HOST=<hostname>.<domain>)(PORT=1889))
    )
    TNS-12557: TNS:protocol adapter not loadable
    TNS-12560: TNS:protocol adapter error
    TNS-00527: Protocol Adapter not loadable

    SOLUTION
    Steps to enable TCPS protocol support in Oracle Standard Edition:

    1.1) Navigate to $ORACLE_HOME/lib and locate the file libntcps11_ee.a.dbl. If the file does not exist in that location move to step 2.1, otherwise proceed with the next step.

    1.2) Still in $ORACLE_HOME/lib, make a backup copy of libntcps11.a. Verify that this step was successful.

    [<hostname> lib] cp libntcps11.a libntcps11.a.orig

    1.3) Next replace the existing libntcps11.a with libntcps11_ee.a.dbl.

    [<hostname> lib] cp libntcps11_ee.a.dbl libntcps11.a

    [<hostname> lib] ls -al libntcps*

    -rw-rw-r-- 1 oracle oradba 307802 May 13 15:33 libntcps11.a


    -rw-r--r-- 1 oracle oradba 7416 Aug 5 2011 libntcps11.a.orig
    -rw-r--r-- 1 oracle oradba 307802 May 13 17:09 libntcps11_ee.a.dbl

    1.4) With the updated version of libntcps.11.a in place relink.

    All running Oracle processes should be stopped prior to relinking.

    [<hostname> lib] relink all


    writing relink log to: /home/<username>/app/oracle/product/SE11203/install/relink.log

    1.5) TCPS protocol support will be enabled when linking is complete. At this point you are finished and do not need to perform any more steps.

    Only perform these next steps if libntcps11_ee.a.dbl does not already exist in $ORACLE_HOME/lib.

    2.1) After expanding the installation disks used to install your version of Oracle Standard Edition copy the file filegroup5.jar from the installation path shown in this example to /tmp. Modify the Oracle version in the path so that it
    matches your installation version, e.g., .../oracle.network.rsf/11.2.0.2.0/1/...

    [<hostname> tmp] mkdir /tmp/tcps

    [<hostname> tmp] cp database/stage/Components/oracle.network.rsf/11.2.0.3.0/1/DataFiles/filegroup5.jar /tmp/tcps

    2.2) Display the files contained in the copied jar file using $ORACLE_HOME/jdk/jar. The contents should include libntcps11_ee.a.dbl. This file will be used to enable TCPS.

    [<hostname> tmp] cd /tmp/tcps

    [<hostname> tcps] $ORACLE_HOME/jdk/bin/jar tvf filegroup5.jar

    0 Wed Oct 29 21:50:20 EDT 2008 lib/clntsh.map


    137 Fri Aug 05 06:41:34 EDT 2011 lib/ldflags
    8817786 Fri Aug 05 07:12:26 EDT 2011 lib/libn11.a
    105024 Fri Aug 05 07:06:26 EDT 2011 lib/libnbeq11.a
    239200 Fri Aug 05 06:35:32 EDT 2011 lib/libncrypt11.a
    28044 Fri Aug 05 06:58:20 EDT 2011 lib/libnhost11.a
    1201752 Fri Aug 05 06:56:58 EDT 2011 lib/libnl11.a
    900902 Fri Aug 05 07:10:18 EDT 2011 lib/libnro11.a
    209636 Fri Aug 05 07:04:36 EDT 2011 lib/libnsgr11.a
    3218 Fri Aug 05 07:11:54 EDT 2011 lib/libnsslb11.a
    273780 Fri Aug 05 07:06:40 EDT 2011 lib/libntcp11.a
    307802 Fri Aug 05 07:07:54 EDT 2011 lib/libntcps11_ee.a.dbl
    7416 Fri Aug 05 07:07:56 EDT 2011 lib/libntcps11_std.a.dbl
    39826 Fri Aug 05 06:58:22 EDT 2011 lib/libntns11.a
    153914 Fri Aug 05 07:06:48 EDT 2011 lib/libnus11.a
    6870 Fri Aug 05 07:11:10 EDT 2011 lib/libnzjs11.a
    6544 Fri Aug 05 07:12:02 EDT 2011 lib/naect_ee.o.dbl
    6512 Fri Aug 05 07:12:04 EDT 2011 lib/naect_std.o.dbl
    4520 Fri Aug 05 07:12:02 EDT 2011 lib/naedhs.o
    15920 Fri Aug 05 07:12:02 EDT 2011 lib/naeet_ee.o.dbl
    15888 Fri Aug 05 07:12:04 EDT 2011 lib/naeet_std.o.dbl
    4832 Fri Aug 05 06:50:16 EDT 2011 lib/nautab_ee.o.dbl
    4480 Fri Aug 05 06:50:16 EDT 2011 lib/nautab_std.o.dbl
    0 Wed Oct 29 21:50:20 EDT 2008 lib/nnfgt.o
    6288 Fri Aug 05 07:06:22 EDT 2011 lib/ntcontab.o
    334568 Fri Aug 05 06:58:34 EDT 2011 lib/libnldap11.a
    12189 Fri Aug 05 07:12:00 EDT 2011 lib/libntcpaio11.so
    58949 Fri Aug 05 07:12:00 EDT 2011 lib/libnque11.so

    2.3) Extract libntcps11_ee.a.dbl from the jar file and then copy it to $ORACLE_HOME/lib

    [<hostname> tcps] $ORACLE_HOME/jdk/bin/jar xvf /tmp/tcps/filegroup5.jar lib/libntcps11_ee.a.dbl


    inflated: lib/libntcps11_ee.a.dbl

    [<hostname> tcps] ls lib


    libntcps11_ee.a.dbl

    [<hostname> tcps] cp lib/libntcps11_ee.a.dbl $ORACLE_HOME/lib

    2.4) After backing up the existing libntcps11.a and verifying, copy libntcps11_ee.a.dbl to libntcps11.a (replacing the original file).

    [<hostname> lib] cd $ORACLE_HOME/lib

    [<hostname> lib] cp libntcps11.a libntcps11.a.orig (verify!)

    [<hostname> lib] cp libntcps11_ee.a.dbl libntcps11.a

    [<hostname> lib] ls -al libntcps*

    -rw-rw-r-- 1 oracle oradba 307802 May 13 15:33 libntcps11.a


    -rw-r--r-- 1 oracle oradba 7416 Aug 5 2011 libntcps11.a.orig
    -rw-r--r-- 1 oracle oradba 307802 May 13 17:09 libntcps11_ee.a.dbl

    2.5) With the EE version of libntcps.11.a in place relink.

    All running Oracle processes should be stopped prior to relinking.

    [<hostname> lib] relink all


    writing relink log to: /home/<username>/app/oracle/product/SE11203/install/relink.log

    2.6) TCPS protocol support will be enabled when linking is complete.


    REFERENCES

    NOTE:156345.1 - Oracle Net Configuration Tools Do Not Show Advanced Security (ASO) Pulldown
    NOTE:1340831.1 - Using Class of Secure Transport (COST) to Restrict Instance Registration in Oracle RAC
    Didn't find what you are looking for?

    You might also like