We have access to the OAuth authorization server's SSL configuration, which is as follows:
SSLEngine on SSLHonorCipherOrder On SSLCipherSuite kEECDH+ECDSA:kEECDH:kEDH:HIGH:+SHA:!RSA:!3DES:!RC4:!aNULL:!eNULL:!LOW:!MD5:!EXP:!DSS:!PSK:!SRP:!kECDH:!kDH:!SEED SSLCompression Off SSLProtocol all -SSLv2 -SSLv3
Is there some configuration/limit about allowed SSL ciphers in affwebservices' OAuth servlet?
DE297147 - SSL Backchannel communication is using limited number of ciphers
You are right, the 12.52.x affwebservices is using limited cipher suites resulting in SSL Handshake failure.
This code was changed in 12.6 where we now retrieve ciphers from a new configuration file called SSLCipherConfig.properties.
Also there were upgrade of BESAFE components SSLJ from 5.1 to 6.1.3 on R12.6 Access Gateway.
This issue has also be fixed in the 12.52 SP1 CR9 agent to allow SSL BackChannel with more ciphersuites.