The default net.encryption_types_client variable for Applications Manager can be changed by defining it in the $AW_HOME/site/awenv.ini.
This needs to be added the following under the [default] section of the file.
net.encryption_types_client=AES256
net.crypto_checksum_types_client=SHA256
Note: This is an example of setting AES256 and SHA256. Other encryption/checksum types can be added to the variable as well. You can confirm what should be required by looking at the database server side sqlnet.ora file for your Oracle install.
Ensure the master is on a version of Java which supports the higher encryption (1.8).
Once in place the Application Manager back end processes will need to be stopped and restarted.
The setting can be confirmed by looking in the RmiServer log with debug enabled. The line will look as follows:
08:50:42.914 main: .AwEnvOptions: net.encryption_types_client = AES256
08:50:42.915 main: .AwEnvOptions: .AwEnvOptions: net.crypto_checksum_types_client = SHA256
08:50:42.915 main: .AwEnvOptions: net.crypto_checksum_types_client = MD5
08:50:43.177 main: .AxConnection: inUse (sync) null AM9 false
08:50:43.178 main: .AxConnection: inUse (sync) done null AM9
Applications Manager version 9.1 allows for stronger encryption if using Java 8 or above. It is advised to update to java 1.8 along with implementing the encryption changes to the awenv.ini as noted above. You may also want to upgrade the ojdbc6.jar file in the $AW_HOME/web/classes directory of the product to ojdbc7.jar if using Oracle 12c and Java 1.8 if you still have connection issues after updating the awenv.ini and restarting. Fix Status: No Fix
Fix Version(s):
N/A