Searching the Help
To search for information in the Help, type a word or phrase in the Search box. When you enter a group of words, OR is inferred. You can use Boolean operators to refine your search.
Results returned are case insensitive. However, results ranking takes case into account and assigns higher scores to case matches. Therefore, a search for "cats" followed by a search for "Cats" would return the same number of Help topics, but the order in which the topics are listed would be different.
Words and Phrases
| Search for | Example | Results |
|---|---|---|
| A single word | cat
|
Topics that contain the word "cat". You will also find its grammatical variations, such as "cats". |
|
A phrase. You can specify that the search results contain a specific phrase. |
"cat food" (quotation marks) |
Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase. |
Using Boolean Operators
| Search for | Operator | Example |
|---|---|---|
|
Two or more words in the same topic |
|
|
| Either word in a topic |
|
|
| Topics that do not contain a specific word or phrase |
|
|
| Topics that contain one string and do not contain another | ^ (caret) |
cat ^ mouse
|
| A combination of search types | ( ) parentheses |
|
Configure Universal CMDB and Configuration Manager to Support Oracle Advanced Security Option (ASO)
This section describes how to configure UCMDB and CM to support Oracle Advanced Security Option (ASO).
Note Because the properties for ASO are not included in installation, additional steps described below are required. When connecting to Oracle ASO, It is recommended to perform the installation first, and then switch the UCMDB server, CM, and database to ASO.
Configure Universal CMDB to Support Oracle Advanced Security Option (ASO)
-
Add the following lines to the sqlnet.ora file:
SQLNET.ENCRYPTION_SERVER = required SQLNET.ENCRYPTION_TYPES_SERVER= (AES256) SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER= (SHA1) SQLNET.CRYPTO_SEED = '23456789' SQLNET.CRYPTO_CHECKSUM_SERVER = required
Note
- The database administrator privilege is required to perform the above step.
-
DataDirect Drivers 5.1.4 support SHA-2 hashing. For details, see the following:
-
Types of Oracle Advanced Security Data Integrity Algorithms supported by DataDirect:
DataDirect supplies the JDBC drivers that the UCMDB installation is using to connect to the Oracle database.
-
Types of Oracle Advanced Security Data Integrity Algorithms supported by Oracle, see chapter 1.2.1.2 Data Integrity:
https://docs.oracle.com/cd/E11882_01/network.112/e40393/asointro.htm#ASOAG010
For information about SSL (ASO) properties, see https://docs.oracle.com/cd/B28359_01/java.111/b31224/clntsec.htm.
-
-
On the UCMDB Server, perform the following:
-
Open the directory <UCMDB_install_dir>\UCMDBServer\conf. Locate the jdbc.properties file and add the following lines:
For Oracle drivers (which are OOTB drivers used by UCMDB Server):
Oracle=orcl orcl.CONNECTION_PROPERTY_THIN_NET_ENCRYPTION_LEVEL=REQUIRED orcl.CONNECTION_PROPERTY_THIN_NET_ENCRYPTION_TYPES=AES256 orcl.CONNECTION_PROPERTY_THIN_NET_CHECKSUM_LEVEL=REQUIRED orcl.CONNECTION_PROPERTY_THIN_NET_CHECKSUM_TYPES=SHA1
For DataDirect drivers:
Oracle=ddoracle ddoracle.EncryptionTypes=AES256 ddoracle.EncryptionLevel=required ddoracle.DataIntegrityTypes=SHA1 ddoracle.DataIntegrityLevel=required
- Open the directory <UCMDB_install_dir>\UCMDBServer\bin\jre\lib\security. Replace the local_policy.jar and US_export_policy.jar files with the similar jar files from the Zulu Cryptography Extension Kit provided by OpenJDK.
- Restart the UCMDB Server.
-
Note If upgrading UCMDB to version 2018.05, after the upgrade, open the <UCMDB_install_dir>\UCMDBServer\bin\jre\lib\security directory and replace the local_policy.jar and US_export_policy.jar files with the similar jar files from the Zulu Cryptography Extension Kit provided by OpenJDK.
Caution It is strongly recommended not to perform any downgrade action if the UCMDB is configured to support Oracle ASO.
Enable support for Oracle ASO on Configuration Manager
To enable Oracle ASO support on CM,
- Stop Configuration Manager.
-
Copy the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files for Java 8 to the java\windows\x86_64\lib\security folder.
The JCE Unlimited Strength Jurisdiction Policy Files can be downloaded from http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html.
-
Open the datamodelContext.xml file (in the servers\server-0\webapps\cnc\WEB-INF\classes\META-INF\spring folder) using a text editor, and then copy and add the following property tag to bean id="dataSource" class="com.mchange.v2.c3p0.ComboPooledDataSource":
<property name="properties">
<props>
<prop key="EncryptionTypes">AES256</prop>
<prop key="EncryptionLevel">required</prop>
<prop key="DataIntegrityTypes">SHA1</prop>
<prop key="DataIntegrityLevel">required</prop>
</props>
</property> - Save the file.
-
Start Configuration Manager.
We welcome your comments!
To open the configured email client on this computer, open an email window.
Otherwise, copy the information below to a web mail client, and send this email to cms-doc@microfocus.com.
Help Topic ID:
Product:
Topic Title:
Feedback: