Configuring TLS to the appropriate version
Transport Layer Security (TLS) is a cryptographic protocol designed to provide secure communication over a computer network. It ensures that data transmitted between applications, such as web browsers and servers, remains private and tamper-proof. Setting TLS to version 1.2 is required to ensure communication between 9.4 and 10.2.3 components.
In back-level environments, for example 9.4, SSL is not enabled by
default and TLS version 1.2 needs to be enabled on the back-level master domain manager to enable communication.
Perform the following steps on the back-level master domain manager:
- Browse to the
<JazzSMHome>/profile/config/cells/JazzSMNode01Cell
path, where
- <JazzSMHome>
- is the directory where Jazz for Service Management is installed.
- Open the security.xml file in a flat-text editor.
- Change the value of the sslProtocol parameter to TLSv1.2 and save the file.
- Browse to the JazzSM/profile/properties path.
- Open the ssl.client.props file in a flat-text editor.
- Change the com.ibm.ssl.protocol parameter to TLSv1.2 and save the file.
- Run the following commands from the TWA_home/wastools directory to stop and restart the master domain manager:
./ stopWas.sh -direct -\user| wauser -password \password ./ startWas.sh -direct
- Run the following commands from the DWC_home/wastools directory to stop and restart the Dynamic Workload Console:
./ stopWas.sh -direct -\user| DWCuser -password \password ./ startWas.sh -direct
For more information, see Switching from SSLv3 to TLSv1.2 and steps 2 and 3 in How to Run Composer on a 9.5 FTA Connecting to a 9.4 MDM