Jump to content
We've recently updated our Privacy Statement, available here ×

  • Configuring TIBCO JasperReports Server to Connect to Oracle Database with Oracle Advanced Security enabled

    asimkin

    By asimkin

      • Features: Repository Version: v6.3
     Share

    Issue Description

    Customer deployed TIBCO JasperRepors® Server v.6.3.0 with Oracle database respository using native Oracle JDBC driver.

    Now, they need to enable Oracle Advanced Security feature on the database side and configure TIBCO JasperReports®Server accordingly.

    Resolution

    Oracle Advanced Security (OAS) provides industry standards-based data privacy, integrity, authentication, single sign-on, and access authorization in a variety of ways:

    https://docs.oracle.com/cd/E11882_01/network.112/e40393/preface.htm#ASOAG10081

    Customer shared sqlora.net config file with OAS details:

    [/code]
    NAMES.DIRECTORY_PATH = (TNSNAMES, EZCONNECT)
    ADR_BASE = /opt/oracle/base
    DEFAULT_SDU_SIZE = 32767
    RECV_BUF_SIZE = 1875000
    SEND_BUF_SIZE = 1875000
    SQLNET.EXPIRE_TIME = 1
    SQLNET.ENCRYPTION_CLIENT = required
    SQLNET.ENCRYPTION_TYPES_CLIENT = (AES256)
    SQLNET.CRYPTO_CHECKSUM_CLIENT = required
    SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT = (SHA1)
    SQLNET.ENCRYPTION_SERVER = required
    SQLNET.ENCRYPTION_TYPES_SERVER = (AES256)
    SQLNET.CRYPTO_CHECKSUM_SERVER = required
    SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER = (SHA1)
    SQLNET.ALLOWED_LOGON_VERSION = 12

    TIBCO JDBC driver for Oracle supports Oracle Advanced Security (OAS) data encryption and data integrity feature,

    including support for the following new connection properties:

    • DataIntegrityLevel - sets the level of OAS data integrity used for data sent between the driver and database server.
    • DataIntegrityTypes -  specifies one or multiple algorithms to protect against attacks that intercept and modify data being transmitted between the client and server when OAS data integrity is enabled using the DataIntegrityLevel property.
    • EncryptionLevel -  determines whether data is encrypted and decrypted when transmitted over the network between the driver and database server using OAS encryption.
    • EncryptionTypes -  specifies one or multiple algorithms to use if OAS encryption is enabled using the EncryptionLevel property.

    In order to configure the server to use TIBCO JDBC driver for Oracle, the next steps should be performed:

    • copy TIoracle-x.y.z.jar JDBC driver to <apache-tomcat>/lib folder
    • modify webapps/jasperserver-pro/META-INF/context.xml file, jdbc/jasperserver resource definition:

    change driverClassName to "tibcosoftware.jdbc.oracle.OracleDriver"

    change connection url to a value like

    "jdbc:tibcosoftware:oracle://servername:1521;SID=ORCL;DataIntegrityLevel=required;DataIntegrityTypes=SHA1;EncryptionLevel=required;EncryptionTypes=AES256"

     

    [/code]
    <Resource name="jdbc/jasperserver" auth="Container" type="javax.sql.DataSource"
    maxActive="100" maxIdle="30" maxWait="10000"
    username="JASPER" password="xxxxxxxxx"
    driverClassName="tibcosoftware.jdbc.oracle.OracleDriver"
    accessToUnderlyingConnectionAllowed = "true"
    validationQuery="SELECT 1 FROM DUAL"
    testOnBorrow="true"
    url="jdbc:tibcosoftware:oracle://servername:1521;SID=ORCL;DataIntegrityLevel=required;DataIntegrityTypes=SHA1;EncryptionLevel=required;EncryptionTypes=AES256"
    />

     

    • clear application server temp / work folders, start the server

    The exact value of the OAS related properties depends on values specified in sqlora.net file

    Ref. Case 01445369

     Share
    Go to entries

    User Feedback

    Recommended Comments

    There are no comments to display.



    Guest
    This is now closed for further comments

×
×
  • Create New...

© 2024 Cloud Software Group,
Inc. All rights reserved.

Products

Explore