MAXTLSLEVEL
The MAXTLSLEVEL system initialization parameter specifies the maximum TLS protocol that CICS® uses for secure TCP/IP connections.
Note: When AT-TLS is used to secure socket sessions, CICS SSL/TLS system initialization parameters such as
KEYRING, MINTLSLEVEL and MAXTLSLEVEL are no longer
required because the implementation of TLS is provided by AT-TLS policy statements and all
encryption and decryption is done outside of the CICS address
space. For details, see Implementation options for TLS
.
- MAXTLSLEVEL={TLS11|TLS12|TLS13}
- When a secure connection is established between a pair of processes, the most secure TLS
protocol that is supported by both processes is used.
- TLS11
- Sets the maximum level of TLS to 1.1.
- TLS12
- Sets the maximum level of TLS to 1.2. This is the default value.
- TLS13
Sets the maximum level of TLS to 1.3.
6.1Restriction: 6.1 Sysplex caching by using theSYSPLEX
option is not supported for TLS 1.3.