0 Replies Latest reply on Jun 20, 2015 9:43 PM by Kevin Archer

    Disable TLSv1.0 Wildfly 8.1

    Kevin Archer Newbie

      Attempting to disable TLSv1 by using

      <https-listener name="https" socket-binding="https" security-realm="UndertowRealm" enabled-cipher-suites="HIGH:!aNULL:!eNULL:!PSK:!RC4:!MD5" enabled-protocols="TLSv1.1,TLSv1.2"/>

       

      after restarting openssl s_client -connect x.x.x.x:8443 -tls1

      gives me

      New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-SHA

      Server public key is 2048 bit

      Secure Renegotiation IS supported

      Compression: NONE

      Expansion: NONE

      SSL-Session:

          Protocol  : TLSv1

       

      RC4 ciphers are allowed as well.

       

      Thanks in advance!