Configuring TLS to the appropriate version

Transport Layer Security (TLS) is a cryptographic protocol designed to provide secure communication over a computer network. It ensures that data transmitted between applications, such as web browsers and servers, remains private and tamper-proof. Setting TLS to version 1.2 is required to ensure communication between 9.4 and 10.2.3 components.

In back-level environments, for example 9.4, SSL is not enabled by default and TLS version 1.2 needs to be enabled on the back-level master domain manager to enable communication. Perform the following steps on the back-level master domain manager:
  1. Browse to the <JazzSMHome>/profile/config/cells/JazzSMNode01Cell path, where
    <JazzSMHome>
    is the directory where Jazz for Service Management is installed.
  2. Open the security.xml file in a flat-text editor.
  3. Change the value of the sslProtocol parameter to TLSv1.2 and save the file.
  4. Browse to the JazzSM/profile/properties path.
  5. Open the ssl.client.props file in a flat-text editor.
  6. Change the com.ibm.ssl.protocol parameter to TLSv1.2 and save the file.
  7. Run the following commands from the TWA_home/wastools directory to stop and restart the master domain manager:
    ./ stopWas.sh -direct -\user| wauser -password \password
    ./ startWas.sh -direct
  8. Run the following commands from the DWC_home/wastools directory to stop and restart the Dynamic Workload Console:
    ./ stopWas.sh -direct -\user| DWCuser -password \password
    ./ startWas.sh -direct

For more information, see Switching from SSLv3 to TLSv1.2 and steps 2 and 3 in How to Run Composer on a 9.5 FTA Connecting to a 9.4 MDM