For access from a web browser, TLS is used only for accessing AdminUI and accessing Access Gateway.
WebAgent and WAOP can not be notified by CA support because they are problems with the Web server and application server on which they are incorporated. (What user choose for them web server or application server is them choice of user or partner.)1) About siteminder
It is possible to check whether TLS is supported depending on the version of JDK that has been introduced. Please refer to the following URL.Tech Tip - CA Single Sign-On:Administrative UI: Does the standalone Admin UI installation support TLSv1.2 ?2) About Access Gateway
Please refer to the following URL.Support for TLS 1.1 and TLS 1.2 on CA Access Gateway (formerly CA Secure Proxy Server)3) About Federation Manager
In Federation Manager 12.52SP1, SSL / TLS is disabled by default, and user need to enable the settings if customers want to use it.SSL Administration for Federation System
The latest CR09 includes Apache, Tomcat, and OpenSSL compatible with TLS 1.2. If customers are using an unsupported version, please apply the latest CR.