Skip to Content
0
Former Member
Sep 25, 2015 at 10:25 PM

ssl/client_ciphersuite not working on my Java stack

1108 Views

I am testing SSL on my Netweaver dual stack lab system with 742 Kernel and CommonCrypto 8.4.37.

I set the following client_cipherssuite in the DEFAULT.PFL profile

ssl/client_ciphersuites = 151:HIGH

Which basically should use the latest TLS version first.

After setting I tested it to make sure SAP is calling (client) another Sap server.

For ABAP stack, via RFC (type G), the results was successful and I am able to see TLSv1.2 being negotiated.

For Java Stack, via Java Destination, the results was not successful. I am getting TLSv1.0 instead of 1.2 as what I've configured.

So am I setting it correctly or am I missing a setup in the Java stack or is there a bug on the code?

I would assume DEFAULT profile would take care of both the ABAP and Java Stack. Or am I wrong?