How to change TLS version to 1.2 in RTC 5.0.2
We are using RTC 5.0.2 with WebSphere 8.5.5.3 in Red Hat Enterprise Linux Server release 6.9 (Santiago).
Is TLS1.2 supported in this configuration? if yes, what is the procedure to update TLS1.2 in RTC 5.0.2. ,
We use CCM/JTS in it.
Thanks,
Delhi
|
One answer
Ralph Schoon (63.3k●3●36●46)
| answered Nov 13 '23, 3:29 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER RTC 5.0.2 is out of support for a long time now. The only supported versions to date are 7.0.2 and later.
As far as I know 5.x and 6.x do not support TLS 1.2 and the only way to get to TLS 1.2 support is upgrading to a supported version. That upgrade also contains the Log4J 2 and other critical security patches.
Comments Hi Ralph,
Thanks for the update. There are few options in WebSphere admin console under SSL certificate and key management > Manage FIPS
1. Enable FIPS 140-2 ( Update SSL configurations to require TLS)
2. Enable SP800-131
a. Transition
Update SSL configurations to require TLS and accept TLSv1.2.
b. Strict
Update SSL configurations to require TLSv1.2.
3. Enable Suite B: Accept 128 bit keys
4. Enable Suite B: Accept 192 bit keys
Can we use these options to enable TLS1.2?
we need to perform this upgrade to connect to TLS1.2 LDAP server.
Thanks,
Delhi
You can try out if it works for you, if it works, fine.
As far as I can tell, the applications have to support TLS 1.2 themselves for real TLS 1.2 support. There are code changes, e.g. enable TLS 1.2 in the application.
|
Your answer
Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.