Disable SSLv3 in Apache HTTP Server
Background:
We had a requirement to disable all version of ssl for encryption and use TLS. We used https://www.ssllabs.com to test our http server
We found that SSL 3 had a vulnerability. By removing SSL from the list of supported protocols, BEAST attach and POODLE were mitigated and were able to achieve an over all rating of B for our website
Validating Identity Management Installation
Validating Oracle Access Manager Configuration
- Access OAM console at http://hostname:7001/oamconsole
- Click on the System Configuration tab
- Expand Access Manager Settings – SSO Agents – OAM Agents.
- Click the open folder icon, then click Search.
- You should see the WebGate agents Webgate_IDM, Webgate_IDM_11g and IAMSuiteAgent