TLS versions supported for encryption between Harvest and Oracle

book

Article ID: 144436

calendar_today

Updated On:

Products

CA Harvest Software Change Manager CA Harvest Software Change Manager - OpenMake Meister

Issue/Introduction

It is possible to encrypt the communication between Harvest and the Oracle database.
The encryption is defined at the ODBC layer, on the DataDirect Connect for ODBC.
 
This is controlled using the  EncryptionMethod parameter in the odbc.ini file.

If set to 0 (No Encryption), data is not encrypted.
If set to 1 (SSL), data is encrypted using the SSL protocols specified in the Crypto Protocol Version
connection option.

What are the SSL protocols supported? 

Environment

Release : 13.0
Component : CA Harvest Software Change Manager

Resolution

The following versions of TLS are supported by Harvest.

TLSv v1.0, v1.1, v1.2

This is configured on the odbc.ini file for the DataDirect Connect for ODBC driver.

Example
If your server supports TLSv1.1 and TLSv1.2, you can specify acceptable cryptographic protocols with the following key-value pair:
CryptoProtocolVersion=TLSv1.1,TLSv1.2

Additional Information

Further information regarding the encryption of Data in Harvest:
How to encrypt Harvest data