Configuring SSL Verification

If you are connecting to an Oracle server that has Secure Sockets Layer (SSL) enabled, you can configure the connector to connect to an SSL-enabled socket. When connecting to a server over SSL, the connector supports identity verification between the client and the server.

The procedure for configuring SSL in your connection differs depending on whether or not you are connecting through TNS. For more information, see below:

• Using TNS
• Without Using TNS

Using TNS

If you have configured the connector to connect using server information that is defined in a tnsnames.ora configuration file, then you must make sure that the necessary SSL settings are specified in the tnsnames.ora file. For more information, see the following:

• For information about configuring SSL for your Oracle database, including details about the settings required in the tnsnames.ora file, see "Configuring Secure Sockets Layer Authentication" in the Oracle Database Security Guide: https://docs.oracle.com/en/database/oracle/oracle-database/19/dbseg/configuring-secure-sockets-layer-authentication.html.
• For general information about the tnsnames.ora configuration file, see "Local Naming Parameters in the tnsnames.ora File" in the Oracle Database Net Services Reference: https://docs.oracle.com/en/database/oracle/oracle-database/19/netrf/parameters-for-the-sqlnet.ora.html.

Without Using TNS

If you have specified your server information directly in a DSN or connection string instead of using the tnsnames.ora configuration file, then you must configure the connector to use the TCPS protocol, which enables SSL encryption on a TCP/IP connection. The connector then encrypts the connection using the SSL settings defined in the sqlnet.ora configuration file.

Before configuring the connector to use TCPS, you must specify the necessary SSL settings in the sqlnet.ora file, and set the TNS_ADMIN environment variable on your machine to point to the path of the sqlnet.ora file. For more information, see the following:

• For information about configuring SSL for your Oracle database, including details about the settings required in the sqlnet.ora file, see "Configuring Secure Sockets Layer Authentication" in the Oracle Database Security Guide: https://docs.oracle.com/en/database/oracle/oracle-database/19/dbseg/configuring-secure-sockets-layer-authentication.html.
• For general information about the sqlnet.ora file, see "Parameters for the sqlnet.ora File" in the Oracle Database Net Services Reference: https://docs.oracle.com/en/database/oracle/oracle-database/19/netrf/parameters-for-the-sqlnet.ora.html.

To enable TCPS:

1. Open the ODBC Data Source Administrator where you created the DSN, then select the DSN, and then click Configure.
2. Select the Use TCPS check box.
3. To save your settings and close the dialog box, click OK.