How do we disabled the old TLS protocols for the R12.8.x Admin UI
search cancel

How do we disabled the old TLS protocols for the R12.8.x Admin UI

book

Article ID: 117459

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction



We would like to make our AdminUI Servers more secure and remove the old out dated TLSv1.0 and TLSv1.1 SSL Protocols from the AdminUI. Is this possible and if so, how can we accomplish that?

Environment

WAMUI: 12.8.x

Resolution

To disable the SSL Protocols TLSv1.0 and TLSv1.1 in the AdminUI you will need to edit the stanadalone-full.xml file that can be found at the location: <WAMUI Installer location>\adminui\standalone\configuration\standalone-full.xml

Find the line that has "<https-listener ......."

There will be an attribute for the tag named enabled-protocols it will have a value of "TLSv1.1,TLSv1.2"

You will need to remove the TLSv1.1 part of the string so it looks like the following:

enabled-protocols = "TLSv1.2"

Save the standalone-full.xml file and stop-start the AdminUI and it should only accept TLSv1.2 SSL Protocol connections.

Powered by Wolken Software