This topic provides information on Secure Installation and Configuration.

This chapter provides an overview of the architecture of the deployment and describes the installation and configuration procedure for Oracle Banking Digital Experience.

Please note that this is only a guide to securing the Oracle Banking Digital Experience application and does not replace periodic reviews of the security architecture of the entire ecosystem of multiple applications maintained by the customer. The guidance provided in this document must always be augmented by specific understanding of the security considerations of the specific deployment architecture.

• Architecture Diagram
  This topic provides information on Architecture Diagram.
• Installing WebLogic
  This topic provides information on Installing WebLogic.
• Configuring SSL
  This topic provides information on Configuring SSL.
• Disable SSLv3
  This topic provides information on Disable SSLv3.
• HTTP Response Header Configurations
  This topic provides information on HTTP Response Header Configurations.
• Password Policy Guidelines
  This topic provides information on Password Policy Guidelines.
• Configuring 2FA for login
  This topic describes the systematic instruction to Configuring 2FA for login option.
• Configuring 2FA Attributes
  
• Choosing a non blocking PRNG
  This topic provides information on Choosing a non blocking PRNG.
• Mobile App SSL Pinning Configuration
  This topic describes the systematic instruction to Mobile App SSL Pinning Configuration option.
• Generating Security Keys
  This topic provides information on Generating Security Keys.
• API Rate Limiting Recommendations
  This topic provides information on API Rate Limiting Recommendations.
• Host Header Injection Attack Recommendations
  This topic provides information on Host Header Injection Attack Recommendations.