4 Replies Latest reply on Dec 6, 2019 3:02 AM by akonakon

    How to disable TLSv1.1 and TLSv1.0

    prabhakar12
    prabhakar12 Feb 20, 2018 4:51 AM

      Hello,

       

      I have JBoss 8.2 with jdk1.8.0_85 ,I have only  enabled TLSv1.2 protocal. Third party vendor application where they have enabled all TLS1.0/1.1 which they are going to shutdown TLSv1.0/1.1

      • 4750 Views
      • Tags:
        • 1. Re: How to disable TLSv1.1 and TLSv1.0
          hemanthchadaram
          hemanthchadaram Feb 24, 2018 2:06 AM (in response to prabhakar12)
          Disable TLSv1.0 and TLSv1.1

          The Wildfly Undertow subsystem support enabled-protocols attribute, which is a comma separated list of protocols to be supported. For example enabled-protocols="TLSv1.1,TLSv1.2". We will just enable TLSv1.2.

          ============================================================================================

          <subsystem xmlns="urn:jboss:domain:undertow:1.2">

          <server name="default-server">

          <https-listener name="default-https" socket-binding="https"

          security-realm="SSLRealm"

          enabled-protocols="TLSv1.2"/>

          </server>

          </subsystem>

          1 of 1 people found this helpful
            • Actions
          • 2. Re: How to disable TLSv1.1 and TLSv1.0
            akonakon
            akonakon Dec 6, 2019 3:02 AM (in response to hemanthchadaram)

            which file we need to change, i mean which file the above change contains to be done , is it standalone.xml

              • Actions
            • 3. Re: How to disable TLSv1.1 and TLSv1.0
              ctomc
              ctomc Dec 9, 2019 2:11 PM (in response to akonakon)

              it is always standalone.xml or any other standalone*.xml file you might be using to run your server.

                • Actions