MAXTLSLEVEL

The MAXTLSLEVEL system initialization parameter specifies the maximum TLS protocol that CICS® uses for secure TCP/IP connections.

Note: When AT-TLS is used to secure socket sessions, CICS SSL/TLS system initialization parameters such as KEYRING, MINTLSLEVEL and MAXTLSLEVEL are no longer required because the implementation of TLS is provided by AT-TLS policy statements and all encryption and decryption is done outside of the CICS address space. For details, see Implementation options for TLS .

MAXTLSLEVEL={TLS11|TLS12|TLS13}

When a secure connection is established between a pair of processes, the most secure TLS protocol that is supported by both processes is used.

TLS11: Sets the maximum level of TLS to 1.1.

TLS12: Sets the maximum level of TLS to 1.2. This is the default value.
TLS13: Sets the maximum level of TLS to 1.3.

6.1
Restriction: 6.1 Sysplex caching by using the SYSPLEX option is not supported for TLS 1.3.