Red Hat Bugzilla – Bug 1277391
Default values for secure-socket-protocol parameters in rhq-server.properties file need to be changed
Last modified: 2015-11-03 03:51:24 EST
Description of problem:
Currently, security.secure-socket-protocol parameters from rhq-server.properties file are set as:
This worked fine in all versions prior to RHQ 4.12 (version equivalent to JBoss ON 3.3.4). However, in the latest RHQ 4.12 (equivalent JBoss ON 3.3.4), protocol without version is not accepted any more.
So, above "TLS" value should be replaced with "TLSv1,TLSv1.1,TLSv1.2".
Version-Release number of selected component (if applicable):
RHQ 4.12 (equivalent to JON 3.3.4)
Steps to Reproduce:
Attempt to log in using https and 7443 port fails and on Firefox the following error is shown ssl_error_no_cypher_overlap. The same attempt on Chrome fails with ERR_SSL_VERSION_OR_CIPHER_MISMATCH error.
No error is thrown and attempt to log in using https and 7443 works fine.