IBM Support

How to enable strong cipherSuites when making a secure connection from the SCC engine to the managed server

Technical Blog Post


Abstract

How to enable strong cipherSuites when making a secure connection from the SCC engine to the managed server

Body


Need to know how to configure/select cipher suites used to connect
securely from Control Center to Managed Server.

The security you set in the Engine.properties is also used for
connecting securely to the SCC managed servers.

Control Center does not ship with all the ciphers.  You would need to
get the JCE Unlimited Strength Jurisdiction Policy Files and you would
also have to look at what ciphers are available in CD for the API
connections.

Just please make sure your review the below 2 links:

http://www.ibm.com/support/knowledgecenter/SS4Q96_5.4.2/com.ibm.help.scc.542.doc/com.ibm.help.scc.secure.doc/scc_enable_cipher_suite_crypto_algorithms.html

http://docs.oracle.com/javase/7/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider

Once you confirm that you have the JAVA version that supports the
cipher suites you want then enable them in the engine.properties file.

Downloaded and installed .jar files from
http://www.oracle.com/technetwork/java/javase/downloads/jce-7-download-432124.html

You will need to recycle the SCC engine after you make the change.

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SS4PJT","label":"IBM Sterling Connect:Direct"},"Component":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}}]

UID

ibm11123509

Page Feedback