How do you Enable TLSv1.2 with DevTest for SSL
search cancel

How do you Enable TLSv1.2 with DevTest for SSL

book

Article ID: 10267

calendar_today

Updated On:

Products

CA Application Test CA Continuous Application Insight (PathFinder)

Issue/Introduction

Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), both frequently referred to as "SSL", are cryptographic protocols that provide communications security over a computer network.[1] Several versions of the protocols find widespread use in applications such as web browsing, email, Internet faxing, instant messaging, and voice-over-IP (VoIP). Websites use TLS to secure all communications between their servers and web browsers.*

* Per Wkipedia



Environment

Support DevTest versions and platforms.

Cause

N/A

Resolution

To enable TLSv1.2, add theses properties to the local properties file of where each DevTest component runs, including Workstations: 

https.protocols=TLSv1.2 

lisa.server.https.cipher.suites=TLS_DHE_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_GCM_SHA256 

The second property is to set to use strong Cipher Suites, these would be the Cipher Suites to use with DevTest. 

Additional Information

Note on specifying strong cipher suites:  

There will be a dependency on the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files being installed. (local_policy.jar and US_export_policy.jar, would normally be in the DEVTEST_HOMEjre\lib\security folder) .  

This might not be permitted in some areas.  http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html