How to configure security settings within the NCM application to limit the version of TLS that can be used.
The following changes can be made to enable TLS1.1, TLS1.2 and SSLV3 protocols for handshake.
Browse to the following location: $VOYENCE_HOME/jboss/server/vc-server/deploy/jbossweb.sar
From this location, open the following file to edit: server.xml
Make the following changes:
Standard Configuration:
<!-- SSL/TLS Connector configuration using the admin devl guide keystore-->
<Connector protocol="HTTP/1.1" SSLEnabled="true"
port="8880" address="${jboss.bind.address}"
scheme="https" secure="true" clientAuth="false"
keystoreFile="${jboss.server.home.dir}/deploy/1vc.sar/voyence-ssl.keystore"
Amended Configuration (change highlighted in RED):
<!-- SSL/TLS Connector configuration using the admin devl guide keystore-->
<Connector protocol="HTTP/1.1" SSLEnabled="true" protocols="TLSv1.1,TLSv1.2,SSLv3"
port="8880" address="${jboss.bind.address}"
scheme="https" secure="true" clientAuth="false"
keystoreFile="${jboss.server.home.dir}/deploy/1vc.sar/voyence-ssl.keystore"
Next, restart jboss: service jboss restart