We would like to enforce all the connections both inbound and outbound to use TLSv1.2 protocol. I would like to understand if the configuration available in web subsystem->connector->ssl protocol is valid for both inbound and outbound connection
<subsystem xmlns="urn:jboss:domain:web:2.2" default-virtual-server="default-host" native="false">
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http"/>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl name="https" key-alias="jbossfuse" password="password" protocol="TLSv1.2" certificate-key-file="C:/Temp/truststore/jbossfuse-dev.jks"/>
</connector>
<virtual-server name="default-host" enable-welcome-root="false">
<alias name="localhost"/>
<alias name="example.com"/>
</virtual-server>
</subsystem>
You have to configure TLSv1.2 enabled protocols for security-realms with the following configuration in tag.
<server-identities>
<ssl>
<engine enabled-protocols="TLSv1.1 TLSv1.2" />
<keystore ... />
</ssl>
....
</server-identities>
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.