diff --git a/ansible/group_vars/environment_name_delius_core_development_dev_all.yml b/ansible/group_vars/environment_name_delius_core_development_dev_all.yml index 33bd1ef5f..fadd8826d 100644 --- a/ansible/group_vars/environment_name_delius_core_development_dev_all.yml +++ b/ansible/group_vars/environment_name_delius_core_development_dev_all.yml @@ -40,3 +40,11 @@ high_availability_count: # Establish the vars here as a temporary measure spg_document_rest_service_admin_url: "https://alfresco.mis-dev.delius.probation.hmpps.dsd.io/alfresco/service/admin-spg" spg_document_rest_service_public_url: "https://alfresco.mis-dev.delius.probation.hmpps.dsd.io/alfresco/service/noms-spg" +# Enable Oracle Native Network Encryption (ignored for TCPS connections) +# Note that these parameters must be set in the database sqlnet.ora file, not the grid one +sqlnet_parameters: + database: + SQLNET.ENCRYPTION_SERVER: REQUIRED + SQLNET.ENCRYPTION_TYPES_SERVER: (AES256) + SQLNET.ALLOW_WEAK_CRYPTO: "FALSE" + IGNORE_ANO_ENCRYPTION_FOR_TCPS: "TRUE" diff --git a/ansible/group_vars/environment_name_delius_core_development_test_all.yml b/ansible/group_vars/environment_name_delius_core_development_test_all.yml index b2d1d3e4c..f8d948106 100644 --- a/ansible/group_vars/environment_name_delius_core_development_test_all.yml +++ b/ansible/group_vars/environment_name_delius_core_development_test_all.yml @@ -42,3 +42,11 @@ high_availability_count: # Establish the vars here as a temporary measure spg_document_rest_service_admin_url: "https://alfresco.test.delius.probation.hmpps.dsd.io/alfresco/service/admin-spg" spg_document_rest_service_public_url: "https://alfresco.test.delius.probation.hmpps.dsd.io/alfresco/service/admin-spg" +# Enable Oracle Native Network Encryption (ignored for TCPS connections) +# Note that these parameters must be set in the database sqlnet.ora file, not the grid one +sqlnet_parameters: + database: + SQLNET.ENCRYPTION_SERVER: REQUIRED + SQLNET.ENCRYPTION_TYPES_SERVER: (AES256) + SQLNET.ALLOW_WEAK_CRYPTO: "FALSE" + IGNORE_ANO_ENCRYPTION_FOR_TCPS: "TRUE"