Enabling TLS 1.2 with Automic or Applications Manager

book

Article ID: 210011

calendar_today

Updated On:

Products

CA Automic Applications Manager (AM) CA Automic Workload Automation - Automation Engine CA Automic Workload Automation - Automation Engine

Issue/Introduction

What steps do we need to take on Automic Workload Automation or Applications Manager  to enable just  TLS 1.2  for the product?

Environment

TLS 1.2

Resolution

Automic products or Applications Manager does not select what encryption to use nor has its own options to enable TLS or disable SSLV3 etc because it really falls back on the Java version you are using, the Java options that you set, and what is in the java.security file, which is usually found in JAVA_HOME/lib/security/java.security


You will need to consult with your system administrator to modify your java.security files to only allow for tls 1.2.
For forcing Java processes to use only TLS 1.2, the java startup option -Dhttps.protocols="TLSv1.2" should be sufficient.



Additional Information

For further information, please refer to this KB article which talks about Disabling specific protocols forces client to server connections to use less vulnerable or only use a specific TLS protocol such as TLS 1.2.
https://knowledge.broadcom.com/external/article?articleId=107026