What is the requirement to specify a certain version for SSL?
For Cipher suite please see Server.xml (Line 111) under <ams installation root folder>\conf\ and in Adaptor.xml (Line 254) under <ams installation root folder>\conf\_defaultRoot_.
TLSv1.2 is the advised SSL Protocol version our Security Team requires us to implement (Is it possible to specify this?). In regards to the Cipher Suite, I see that the format in adaptor and server XML files uses the following:
Would it still function the same way if I use the following format:
Choosing cipher suite is a browser consideration. As far as AMS is concerned it supports all cipher suites, since we are almost always on latest version of openssl.
check the ciphers supported by the browser using this link : SSL Cipher Suites Supported By Your Browser
About the format, here is an example on how you can use additional attribute for ciphers -
EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:+SSLv 3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SH A:AES128-SHA
Note: AMS does not support SSLv2 or V3 anymore. So, any ciphers which rely on SSLv3 and SSLv2 would not be considered in server-client handshake.
Thank you for the info, in regards to specifying the SSL Protocol Version to TLSv1.2, just want to confirm that this is not allowable?
This is not available within AMS to be specified. Probably you could do that on the server OS's ports.