Hello, I need to update the list of ciphers webMethods Integration Server will use. Is this a patch I apply or is it a new configuration I need to set?
Below is the list of ciphers accepted by the service we are calling.
Download the JCE Unlimited Strength Jurisdiction Policy Files
Then install under the webMethods JVM directory: SoftwareAG\jvm\jvm\jre\lib\security
Checked the local_policy.jar and US_export_policy.jar under SoftwareAG\jvm\jvm\jre\lib\security folder. Found that their local_policy is using limited crypto strength.
During IS start below message logged.
[ISS.0025.0050W] The JCE Unlimited Strength Jurisdiction Policy File was not found. Please install it.
[ISS.0025.0049I] The JCE Unlimited Strength Jurisdiction Policy File was found
If you set “0006 Server SSL Interface to Trace” (IS Admin > Settings > Logging> Server), the enabled cipher list for a JSSE port will be printed out to the server.log when the port is enabled (including during IS startup).
You can then restrict the cipher list if desired by setting