Re: Tomcat won't use TLSv1.2

2020-03-06 Thread i...@flyingfischer.ch
Am 06.03.20 um 15:41 schrieb Christopher Schultz: > Markus, > > On 3/5/20 13:44, i...@flyingfischer.ch wrote: > > Try SSLProtocol="TLSv1.2" (mind the case) instead of > > sslProtocol="-all +TLSv1.2". > > This is correct when using either OpenSSL or JSSE. "sslProtocol" will > only work for JSSE conf

Re: Tomcat won't use TLSv1.2

2020-03-06 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 John, On 3/5/20 13:30, rugman66 . wrote: > I have both Apache and Tomcat running on the same RHEL. I have > successfully configured Apache to use OpenSSL TLSv1.2, but I cannot > get Tomcat to use TLSv1.2. Tomcat for some reason > > will only use TLV

Re: Tomcat won't use TLSv1.2

2020-03-06 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Markus, On 3/5/20 13:44, i...@flyingfischer.ch wrote: > Try SSLProtocol="TLSv1.2" (mind the case) instead of > sslProtocol="-all +TLSv1.2". This is correct when using either OpenSSL or JSSE. "sslProtocol" will only work for JSSE configuration, and

RE: Tomcat won't use TLSv1.2

2020-03-06 Thread Phoenix, Merka
> . wrote: >>On 2020-03-05 at 23:10 rugman66 wrote: > On Thu, Mar 5, 2020 at 10:44 AM i...@flyingfischer.ch > wrote: >> Try SSLProtocol="TLSv1.2" (mind the case) instead of sslProtocol="-all >> +TLSv1.2". >> >> Had this issue too. The connector parameters for SSL are a huge mess and >> have be

Re: Tomcat won't use TLSv1.2

2020-03-05 Thread i...@flyingfischer.ch
Am 05.03.20 um 23:10 schrieb rugman66 .: > On Thu, Mar 5, 2020 at 10:44 AM i...@flyingfischer.ch > wrote: >> Try SSLProtocol="TLSv1.2" (mind the case) instead of sslProtocol="-all >> +TLSv1.2". >> >> Had this issue too. The connector parameters for SSL are a huge mess and >> have been changed

Re: Tomcat won't use TLSv1.2

2020-03-05 Thread rugman66 .
On Thu, Mar 5, 2020 at 10:44 AM i...@flyingfischer.ch wrote: > > Try SSLProtocol="TLSv1.2" (mind the case) instead of sslProtocol="-all > +TLSv1.2". > > Had this issue too. The connector parameters for SSL are a huge mess and > have been changed constantly. > > Best > Markus > > Am 05.03.20 um 19:

Re: Tomcat won't use TLSv1.2

2020-03-05 Thread rugman66 .
Thanks Markus. Now a different issue is occurring. One specific version of the URL is using TLS 1.0. https://server.domain.com On Thu, Mar 5, 2020 at 10:44 AM i...@flyingfischer.ch wrote: > Try SSLProtocol="TLSv1.2" (mind the case) instead of sslProtocol="-all > +TLSv1.2". > > Had this issue to

Re: Tomcat won't use TLSv1.2

2020-03-05 Thread i...@flyingfischer.ch
Try SSLProtocol="TLSv1.2" (mind the case) instead of sslProtocol="-all +TLSv1.2". Had this issue too. The connector parameters for SSL are a huge mess and have been changed constantly. Best Markus Am 05.03.20 um 19:30 schrieb rugman66 .: > Hello, > > > > I have both Apache and Tomcat running on

Tomcat won't use TLSv1.2

2020-03-05 Thread rugman66 .
Hello, I have both Apache and Tomcat running on the same RHEL. I have successfully configured Apache to use OpenSSL TLSv1.2, but I cannot get Tomcat to use TLSv1.2. Tomcat for some reason will only use TLV 1.0, and that is no good. No matter what parameter I set in the server.xml sslProtocol di