first of all your goal should be to disable sslv2 and sslv3 at all due to POODLE vulnerabitility.
Therefore in your extended settings change sslv2 to tls to disable SSL for the Entrust IAIK factory.
For JSSE there are different extended settings keys which are missing from your list:
Whenever possible the first two values should be omitted from the list.
Additionally you should set the following parameters:
The setting available in your list related to JSSE enforces the usage of JSSE when you are connecting to an HTTPS-Url.
Can you share the configuration of your HTTPS-Port (you can omit IP adress and port number if needed)?
It has a radio button related to JSSE usage which was set to “No” by default, meanwhile it is set to “Yes” by default, but I am not sure in which release that was changed.