-
1. Re: How to enable TLSv1.2 only in JBoss AS 7.0.1 (Poodle TLSv1 issue)
ctomc Feb 2, 2015 8:30 AM (in response to sivasankar1631)1 of 1 people found this helpful<ssl
....
protocol="TLSv1.2"
....
/> -
2. Re: How to enable TLSv1.2 only in JBoss AS 7.0.1 (Poodle TLSv1 issue)
sivasankar1631 Feb 2, 2015 12:57 PM (in response to ctomc)<subsystem xmlns="urn:jboss:domain:web:1.1" default-virtual-server="default-host" native="false">
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http" redirect-port="4506"/>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true" max-connections="150">
<ssl name="https" password="password" certificate-key-file="server keystore path" protocol="TLSv1.2" verify-client="optional" ca-certificate-file="cert file path"/>
</connector>
<virtual-server name="default-host" enable-welcome-root="true">
<alias name="localhost"/>
<alias name="example.com"/>
</virtual-server>
</subsystem>
After changing the protocol value from "TLSv1,TLSv1.1,TLSv1.2" to "TLSv1.2", the service crashed. It didn't work. Pls look at the xml snippet above.
-
3. Re: How to enable TLSv1.2 only in JBoss AS 7.0.1 (Poodle TLSv1 issue)
ctomc Feb 2, 2015 4:23 PM (in response to sivasankar1631)for TLS1.2 you need JDK7 or newer as support for it was added in 7
see http://docs.oracle.com/javase/7/docs/technotes/guides/security/enhancements-7.html for more.
in any case i would advise you to upgrade to something newer than 7.0 series...
-
4. Re: How to enable TLSv1.2 only in JBoss AS 7.0.1 (Poodle TLSv1 issue)
sivasankar1631 Feb 3, 2015 5:27 AM (in response to ctomc)I was running my application with JDK 6. After upgrading the application with JDK7 it worked.
I appreciate your help Tomaz.
Thank you.