Skip to Content
0
Aug 31, 2017 at 04:33 PM

Disable ciphers with SHA-1

920 Views

Hello,

is there any way to disable cipher suites with SHA-1?

SAP recommendation for parameters are:

ssl/ciphersuites=135:PFS:HIGH

ssl/client_ciphersuites=150:PFS:HIGH

But if I set the parameters on this value, cipher suites are enabled which we are not allowed to have enabled (due to our IT-Security Officer) - in detail:

TLS_ECDHE_RSA_WITH_AES128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES256_CBC_SHA
TLS_ECDHE_ECDSA_WITH_AES128_CBC_SHA
TLS_ECDHE_ECDSA_WITH_AES256_CBC_SHA
TLS_RSA_WITH_AES128_CBC_SHA
TLS_RSA_WITH_AES256_CBC_SHA

Any hint, how I can set up the parameters?

Greetings

Nina