If the directory/file paths specified in this guide do not exist in your WSO2 product, see Directory Structure of WSO2 Products to locate the paths applicable to your product.
Page Comparison - Configuring Transport Level Security (v.41 vs v.42) - Administration Guide 4.4.x - WSO2 Documentation

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Removed weak ciphers from the 'Disables weak ciphers for the PassThrough transport' section. Used the same cipher list as of 'Disabling weak ciphers for the Tomcat transport'

...

  1. Open the <PRODUCT_HOME>/repository/conf/axis2/axis2.xml  file.
  2. Make a backup of the axis2.xml  file and stop the WSO2 product server.
  3. You need to add the PreferredCiphers parameter under the "Transport Ins (Listeners)" section along with the list of relevant cipher suites.

    Code Block
    <parameter name="PreferredCiphers">TLS_ECDHE_RSAECDSA_WITH_3DESAES_EDE128_CBC_SHASHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHASHA256,TLS_DHE_RSA_WITH_AES_128_GCMCBC_SHA256,TLS_ECDHE_RSAECDSA_WITH_3DESAES_EDE128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHEDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_DHE_RSA_WITH_AES_128_GCM_SHA256</parameter>
  4. Start the server.
  5. Test the pass-through transport using the following command with the corresponding port:

    Code Block
    $ java -jar TestSSLServer.jar localhost 8243

...