Troubleshooting
Problem
This technote describes how a TLS v1.2 enabled Web Service can be invoked in IBM InfoSphere DataStage Web Services Pack using JVM options.
Symptom
When starting SSL handshake, client sends the highest SSL/TLS version it supports to server in ClientHello message.
By default Web Service Pack uses "TLSv1" in ClientHello, i.e. it declares it can support TLS v1.0 or SSL v3.0.
By default Web Service Pack uses "TLSv1" in ClientHello, i.e. it declares it can support TLS v1.0 or SSL v3.0.
If the server does not support TLS 1.2, the handshake fails with the similar exception
javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
Environment
Invoke a TLS v1.2 enabled Web Service in IBM InfoSphere DataStage Web Services Pack
Resolving The Problem
Web services pack uses by default JSSE Socket Factory settings (not WebSphere Socket factory) to do the SSL handshake and supports TLS v1.0 or SSL v3.0.
To run TLS v1.2 Web Service jobs, Users have to Right click on Web Services Pack stage, select "Grid Style", set "JVM options" value to
-Dcom.ibm.jsse2.overrideDefaultProtocol=TLSv12
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSVSEF","label":"IBM InfoSphere DataStage"},"ARM Category":[{"code":"a8m50000000L14QAAS","label":"DataStage->Job Stages->Real Time Stages->Web Services Client"},{"code":"a8m50000000L14zAAC","label":"DataStage->Job Stages->Real Time Stages->Web Services Transformer"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
27 July 2021
UID
ibm16473449