Professional Documents
Culture Documents
Oracle RDBMS 11g Standard Edition: Various Errors After Implementing Kerberos, Native Encryption, TCPS/SSL, or RADIUS (Doc ID 1930944.1)
Oracle RDBMS 11g Standard Edition: Various Errors After Implementing Kerberos, Native Encryption, TCPS/SSL, or RADIUS (Doc ID 1930944.1)
Oracle RDBMS 11g Standard Edition: Various Errors After Implementing Kerberos, Native Encryption, TCPS/SSL, or RADIUS (Doc ID 1930944.1)
In this Document
Symptoms
Cause
Solution
APPLIES TO:
SYMPTOMS
"Network encryption (native network encryption and SSL/TLS) and strong authentication services (Kerberos, PKI, and RADIUS) are no longer part of Oracle Advanced Security and are available in all licensed editions of all
supported releases of the Oracle database."
This is true from a licensing point of view. Technically, the 11gR2 Standard Edition (SE) binaries are not linked with SSL, Kerberos and Radius adapters; these adapters are not enabled out-of-the-box on 11gR2 Standard Edition.
To compare, here is the output from an 11gR2 Standard Edition installation running on Linux:
IPC
BEQ
TCP/IP
SSL
RAW
SDP/IB
IPC
BEQ
TCP/IP
SSL
RAW
SDP/IB
(Note the lines reading "Kerberos v5 authentication" and "RADIUS authentication", which do not appear in the Standard Edition output.)
CAUSE
An 11gR2 Standard Edition Oracle home's binaries are not initially configured to allow these features to work out of the box. It is necessary to manually enable these features on 11gR2. On 12c, it is not necessary to manually
enable the functionality.
(From a licensing point of view, it is allowed to use these features on Oracle Standard Edition.)
SOLUTION
In order to use ASO (network encryption, Kerberos, SSL, Radius) services on Oracle Standard Edition 11gR2, use the following workarounds:
SSL:
Refer to: Note 1457854.1 - How To Enable TCPS Support For Oracle Standard Edition
RADIUS, Kerberos:
Refer to: Note 2145731.1 - How To Enable Radius and Kerberos Adapters In Oracle Database 11g Standard Edition
REFERENCES