Can SSLv3 be disabled and TLSv1 used on Certificate System's Tomcat-Based subsystems?
Issue
- Looking for a Red Hat CS 8.0 guide to configure the cipher suites for the Tomcat systems (CA,DRM,TKS,..). Configuration for the ciphers is in server.xml.
- The parameters look a little different than most tomcat5 cipher configuration guides (e.g. the cipher lists are determined by "ssl3Ciphers=-badCipher,+goodCipher" instead of "ciphers=cipher1,cipher3,etc".
- The end goal here would be to disable SSLv2/3 connections and only use TLS.
Environment
- Red Hat Certificate System 8.0 and higher
- Red Hat Enterprise Linux 5
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.