Disable weaker algorithms

Watch

Save as PDF

Share this page

Feedback

HomeVancouver Platform securityPlatform SecurityInstance Security CenterInstance Security Hardening SettingsOther settings and security resourcesMID server secure deployment guideAdministration and ManagementDisable weaker algorithms

Table of Contents

Disable weaker algorithms

Release version:
Vancouver
Washington DC
UpdatedAug 3, 2023
1 minute read

Vancouver
Now Platform Security

The Vancouver release is no longer supported. As such, the product documentation and release notes are provided for informational purposes only, and will not be updated.

You can disable the weaker algorithms so that requests to any non-TLS 1.2 compliant HTTP server would fail where it used to work.

Edit the jre/lib/security/java.security file in the agent folder, using the following syntax:

jdk.tls.disabledAlgorithms=SSLv3, TLSv1, TLSv1.1, [other weak
          algos…]

Note: Keep in mind that this file is overwritten on upgrade, so you should have to have a process in place to reupdate this file after every upgrade.

Powershell users should consult their Windows administrator help disabling lower versions of TLS. For details on which versions of TLS are being used in Powershell, use the [enum]::GetNames([Net.SecurityProtocolType]) command.

Was this topic helpful?

Yes No

Disable outbound SSL

Revertible behavior

Disable outbound SSL

Revertible behavior

Vancouver Platform security

Filters

Versions

Products