Changes between Version 2 and Version 3 of IamTomcatConfig


Ignore:
Timestamp:
12/09/11 11:33:57 (13 years ago)
Author:
jpmitchell@…
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • IamTomcatConfig

    v2 v3  
    11== [[/|IAM Projects]] / IAM Tomcat Configuration == 
     2 
     3This page documents various tweaks to the IAM Tomcat configuration. 
     4 
     51. Elimination of weak SSL ciphers[[br]]Add the ciphers option as shown below to the connector. 
     6{{{ 
     7... 
     8    <Connector port="8443"  
     9        protocol="HTTP/1.1"  
     10        SSLEnabled="true"  
     11        maxThreads="150"  
     12        scheme="https"  
     13        secure="true"  
     14        clientAuth="false"  
     15        sslProtocol="TLS" 
     16        ciphers="SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_EMPTY_RENEGOTIATION_INFO_SCSV, TLS_RSA_WITH_AES_128_CBC_SHA" /> 
     17... 
     18}}}