IBM Support

Supported TLS and SSL secure protocol versions

Question & Answer


Question

What secure protocol versions of TLS and SSL are supported for use with the Security(Tivoli) Directory Server?

Answer

  1. Security Directory Server in SDS VA 8.0.1, Security Directory Server V6.4 and V6.3.1 supports TLS 1.2, TLS 1.1, TLS 1.0 as well as SSL v3.

  2. Tivoli Directory Server V6.3 is enhanced to support TLS 1.2 (and also TLS 1.1) in 6.3.0.17 (and later 6.3.0.* fix levels, including the latest recommended fix level) in addition to TLS 1.0 and SSL V3. Refer to the following documentation for additional details:
    IBM Tivoli Directory Server support for NIST SP 800-131A

  3. Tivoli Directory Server V6.3 (levels below 6.3.0.17), V6.2 and V6.1 supports TLS 1.0 and SSL V3 with the list of ciphers in the table below:
    Encryption levelAttributeSupported SSL / TLS Version
    AES 256-bit encryptionibm-slapdSslCipherSpec: AESSSLV3/TLS1.0
    Triple DES encryption with a 168-bit key and a SHA-1 MACibm-slapdSslCipherSpec: TripleDES-168SSLV3/TLS1.0
    AES 128-bit encryptionibm-slapdSslCipherSpec: AES-128SSLV3/TLS1.0
    RC4 encryption with a 128-bit key and a SHA-1 MACibm-slapdSslCipherSpec: RC4-128-SHASSLV3/TLS1.0
    RC4 encryption with a 128-bit key and a MD5 MACibm-slapdSslCipherSpec: RC4-128-MD5SSLV3/TLS1.0
    DES encryption with a 56-bit key and a SHA-1 MACibm-slapdSslCipherSpec: DES-56SSLV3/TLS1.0
    RC2 encryption with a 40-bit key and a MD5 MACibm-slapdSslCipherSpec: RC2-40-MD5SSLV3/TLS1.0
    RC4 encryption with a 40-bit key and a MD5 MACibm-slapdSslCipherSpec: RC4-40-MD5SSLV3/TLS1.0

[{"Product":{"code":"SSVJJU","label":"IBM Security Directory Server"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"6.1;6.2;6.3;6.3.1;6.4;8.0;8.0.1","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Product Synonym

SDS;TDS;ISDS;ITDS;Directory Server;Security Directory Server;Tivoli Directory Server

Document Information

Modified date:
16 June 2018

UID

swg21584390

Page Feedback