Table of Contents

Search

  1. Preface
  2. Introduction to Dynamic Data Masking Administration
  3. Authentication
  4. Security
  5. Connection Management
  6. JDBC Client Configuration
  7. ODBC Client Configuration
  8. Access Control
  9. Logs
  10. High Availability
  11. Server Control
  12. Performance Tuning
  13. Troubleshooting
  14. Appendix A: Database Keywords

Administrator Guide

Administrator Guide

Enable SSL Communication in Dynamic Data Masking

Enable SSL Communication in Dynamic Data Masking

After you install or upgrade Dynamic Data Masking, you can enable SSL communication. The upgrade and installation processes do not automatically configure Dynamic Data Masking for SSL communication. However, an installation or upgrade does prepare Dynamic Data Masking for SSL communication.
After upgrade or installation, the Dynamic Data Masking Server generates a self-signed certificate in the file
cfg/ddm.jceks
. By default, the Dynamic Data Masking Server is not configured with keystores and key strategies. The Dynamic Data Masking Server uses the automatically generated self-signed certificate to perform the SSL handshake.
The Dynamic Data Masking administration tools, for example the Management Console and command line tools, are not pre-configured with truststores and trust strategies. By default, when SSL is enabled, the administration tools accept any server certificates without SSL authentication of the certificate.

0 COMMENTS

We’d like to hear from you!