Selecting SSL cipher
It is possible to select the ciphers that are used by the web server’s SSL HTTP connector.
To select the ciphers used by the SSL HTTP connector:
1. Go to ..\Server\tomcat-*\ conf\server.xml.
2. Locate the connector that has secure=true, and add the attribute ciphers="".
3. Locate the connector that has SSLEnabled="true", and add the attribute ciphers="".
The values are JSSE cipher names of the ciphers, separated by commas. The best way to configure this depends on your security policy, we cannot advise on that on up front.
| By default, the ciphers for the JVM will be used less those considered to be insecure. A good example of secure configuration can be found at the OWASP website https://www.owasp.org/index.php/Securing_tomcat#Encryption. It can be a configuration described in the OWASP setup does not support all platforms supported by the Planon software. Check the Supported configurations for your setup to verify if it fits. |