How do you enable TLS 1.2 connections to the Oracle Content Broker database from SDL Tridion Sites 8.5 Microservices and In-Process API roles?

How do you enable TLS 1.2 connections to the Oracle Content Broker database from SDL Tridion Sites  8.5 Microservices and the in-process API roles?   This is not possible out of the box.

Apply hotfix CD_8.5.0.12271 to the Content Delivery microservices or in-process API role for SDL Tridion Sites 8.5.  This fix will add extended Oracle connection parameters to assist in enabling TLS 1.2 connections to the database.  You can obtain the hotfix via FTP as per:

Where can I find hotfixes for SDL Tridion/Web?

The readme for the hotfix will have instructions to apply the fix and additional configuration steps needed for:

- The database server (Oracle Wallet).
- The database client side in creating the Oracle Wallet, converting it P12 format and creating the JKS from P12.
- Configuring the deployer-conf.xml (Deployer service only) and the cd_storage_conf.xml.
- Configuring the microservice's application.properties.

Extended Oracle Connection properties are not possible to configure for use with the microservices or the in-process API role.

For other TLS 1.2 related knowledgebase articles see: For Web 8.5, configuring CM and CD environment to only allow security protocol TLS 1.2