How to disable TLS 1.0, TLS 1.1 for Port 9711 in WSO2

Asked Sep 20 '21 at 05:35

Active Sep 21 '21 at 07:10

Viewed 266 times

My Security Team flagged us about "Vulnerability Assessment" and WSO2 port 9711 flagged still has TLS1.0, TLS1.1.

I Tried to remove TLS1.0, TLS1.1 for 9711 from deployment.toml and nothing happen, run the tools again still have TLS1.0, TLS1.1 for 9711.

We are using wso2am-3.1.0

WSO2 port 9711 using NMAP

deployment.Toml

How to disable TLS1.0 and TLS1.1 port 9711 in WSO2?

#data bridge config
[transport.receiver]
type = "binary"
worker_threads = 10
session_timeout = "30m"
keystore.file_name = "$ref{keystore.tls.file_name}"
keystore.password = "$ref{keystore.tls.password}"
tcp_port = 9611
ssl_port = 9711
ssl_receiver_thread_pool_size = 100
tcp_receiver_thread_pool_size = 100
ssl_enabled_protocols = ["TLSv1.2"]
ciphers = ["SSL_RSA_WITH_RC4_128_MD5","SSL_RSA_WITH_RC4_128_SHA"]

ssl_enabled_protocols = ["TLSv1.0,TLSv1.1,TLSv1.2"] <= ACTUAL VALUE

ssl_enabled_protocols = ["TLSv1.2"] <= UPDATE VALUE

edited Sep 21 '21 at 07:10

asked Sep 20 '21 at 05:35

Yedija Budiono

plz paste the text samples as formatted text , not as image, mainly from deployment.toml , s well which "wso2 product" and version are you refering? – gusto2 Sep 20 '21 at 06:43
what is the API Manager version you are using? – Vithursa Mahendrarajah Sep 21 '21 at 04:02
@VithursaM we are using wso2am-3.1.0 – Yedija Budiono Sep 21 '21 at 05:33
@gusto2 updated the descriptions and code. we are using wso2am-3.1.0 – Yedija Budiono Sep 21 '21 at 05:33

How to disable TLS 1.0, TLS 1.1 for Port 9711 in WSO2

0 Answers0