fturizo
Reputation: 225
Disabling TLS v1.1 Glassfish 4.1
Is there any way to disable the use of TLS v1.1 (and v1) for all SSL configured listeners in Glassfish 4.1? I've tried to set the JVM property
-Ddeployment.security.TLSvX.Y=false
as recommended by this Oracle blog post (https://blogs.oracle.com/java-platform-group/entry/java_8_will_use_tls) but the protocols are still being used in the https negotiations.
Upvotes: 1
Views: 6617
Answers (1)
fturizo
Reputation: 225
Ok, i've found how to do it by messing around with Glassfish command interface. Run the following commands:
asadmin set configs.config.server-config.network-config.protocols.protocol.http-listener-2.ssl.tls-enabled=false
asadmin set configs.config.server-config.network-config.protocols.protocol.http-listener-2.ssl.tls11-enabled=false
And this will leave only TLSv1.2 enabled. This commands are run against the default HTTPS listener (port 8181), so remember to run against any other secure HTTP listener if you need to.
Upvotes: 4
Related Questions
- How to Disable TLSv1.2 in Java 8
- Disabling TLSv1.0 in java8
- How to disable TLS 1.0 from JDK
- Why this certificate error in Glassfish 4.1?
- Cannot setup SSL with Glassfish
- How can I disable TLSv1 without change source code?
- How to make Glassfish 4.0 WebService use TLSv1.1 or TLSv1.2
- How to activate SSL(HTTPS) in Glassfish 3.0 embedded API?
- Glassfish 2.0 Poodle vulnerability - How to disable SSL and allow TLS only
- SSL configuration in glassfish