7 Replies Latest reply on Aug 24, 2017 5:04 PM by Greg Jewell

    FIPS compliant SSL with Wildfly 9.0.2 using TLSv1.2

    Laura O'Donnell Newbie

      We are attempting to configure Wildfly 9.0.2 with a FIPS compliant SSL using TLSv1,2 with java 1.8

      So, we are using NSS with Wildfly in a windows environment.  The instructions we followed were a little old

      but can be found here starting with section 2.2.8  https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.0/html/how_to_configure_server_security/securing_the_server_and_its_interfaces#configure-ssl-fips-rhel6

      Chapter 2. Securing the Server and Its Interfaces - Red Hat Customer Portal

      These instructions used TLSv1.1 as the enabled protocol.  So when I first ran this I followed the instructions and used TLSv1.1.

      Everything seemed to work properly, when I restarted the server, I was able to use https.  So then I found out we needed to use TLSv1.2

      Seemed like a trivial difference.  Ran through the same instructions just used TLSv1.2 instead of TLSv1.1.  Restarted the server and it doesn't seem to work.

      If I try to connect to https I get an error.  Wildfly doesn't seem to be complaining about anything, it just doesn't seem to be working.

      I'm guessing that I'm missing something in the configuration, but I don't know what.

      Can anybody help?