In the process of reviewing the encryption level we’re using in our Active Directory environment. The servers where we run Web Viewer showed usage of an outdated encryption scheme. Unfortunately, the alert did not go into much detail beyond that. We have started looking for the root cause. Does the Web Viewer product (or features) have/use any calls to the Active Directory?  

Output Management Web Viewer 12.1

Outside of LDAP (which this customer is not configured to use), Web Viewer 12.1 does not use Active Directory. Also checked whether CCI is using SSL/TLS. From the customer server.xml, it appears as though they are not using SSL/TLS from Tomcat either.