Hello,
is there any way to disable cipher suites with SHA-1?
SAP recommendation for parameters are:
ssl/ciphersuites=135:PFS:HIGH
ssl/client_ciphersuites=150:PFS:HIGH
But if I set the parameters on this value, cipher suites are enabled which we are not allowed to have enabled (due to our IT-Security Officer) - in detail:
TLS_ECDHE_RSA_WITH_AES128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES256_CBC_SHA
TLS_ECDHE_ECDSA_WITH_AES128_CBC_SHA
TLS_ECDHE_ECDSA_WITH_AES256_CBC_SHA
TLS_RSA_WITH_AES128_CBC_SHA
TLS_RSA_WITH_AES256_CBC_SHA
Any hint, how I can set up the parameters?
Greetings
Nina