tomcat设置启用TLS1.2,禁用TLS1.1

修改tomcat/conf/server.xml文件,在<Connector port="xxx" protocal="HTTP/1.1" ....  标签里,添加sslEnabledProtocols="TLSv1.2"配置,该配置表示仅支持TLS1.2。

验证:openssl s_client -connect host:port -tls1_1,响应拒绝

验证:openssl s_client -connect host:port -tls1_2,响应成功

 

 

This repository has been archived by the owner on Jan 6, 2023. It is now read-only.
posted @ 2023-02-21 16:17  yjry-th  阅读(1617)  评论(0编辑  收藏  举报