Hi All,
We have a requirement to support TLS1.2 for customer as we had only TLS1.0 setup running on our servers.
We don’t want to disturb existing partner so we created a new port with UseJSSE setting set as “Yes” and it supports TLS1.2 and the old port supports TLS1.0 and SSL3.0
I found the below quote from Admin guide.
Does this mean if we select useJSSE as “Yes” it will not support SSL 3.0 & TLS1.0 for the specified Port?
Regards,
Syed Faraz Ahmed
Hi Syed,
SSLv3 should be disabled anyway due to POODLE vulnerability.
JSSE should be able to handle TLSv1.0, but if the port is not using JSSE, it can only handle protocols up to TLSv1.0.
Remember that a JVM 7 or newer is neccessary to use JSSE as well as having the appropriate IS_Core-, SCG- and SIN-Fixes applied.
Check the Extended Settings of IS for correct values.
Regards,
Holger
Hi Holger,
Yes, all the settings are in Place and TLS1.2 is supporting (tested it with different port).
The statement in the guide was misleading. So, thought to confirm the same over here.
Thanks a Lot, Have a good day!!
Regards,
Syed Faraz Ahmed
Hi Syed,
the online version of the guide might be updated, but if you have an older local copy of the guide this might be out of date as the support has been introduced with JVM 7 and the Fixes for the Poodle vulnerability.
Regards,
Holger