tls-v11-cipher-specs

tls-v11-cipher-specs

Define the Transport Layer Security (TLS), Version 1.1, ciphers.

tls-v11-cipher-specs = configuration string

To specify the ciphers for TLS Version 1.1, modify the tls-v11-cipher-specs parameter value in the appropriate configuration file. We can specify one or more ciphers. Enter multiple ciphers in a comma-separated list.
Any TLS Version 1.1 connection to an ISAM server or service is limited to the set of ciphers defined in the tls-v11-cipher-specs parameter.
Options

configuration string

Allowed TLSV11 CipherSpecs:

TLS_RSA_WITH_NULL_NULL, TLS_RSA_WITH_NULL_MD5, TLS_RSA_WITH_NULL_SHA, TLS_RSA_WITH_RC4_128_MD5, TLS_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_DES_CBC_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA

FIPS and NIST SP800-131a allowed TLSV11 CipherSpecs:

TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA

Usage

Optional.
Default value

Default TLSV11 CipherSpecs:

TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_RC4_128_MD5, TLS_RSA_WITH_DES_CBC_SHA, TLS_RSA_WITH_NULL_SHA, TLS_RSA_WITH_NULL_MD5

Example

tls-v11-cipher-specs = TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA

Parent topic: [ssl] stanza